{"report_id":"66b9afe1-bfe9-48bc-a3e7-b09fb414f7ff","version":6,"status":"done","tags":[],"date":"2026-03-16T14:22:27Z","url":{"schema":"http","addr":"m.drwinxglobaloos.cc","fqdn":"m.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"172.67.169.154","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"pc.drwinxglobaloos.cc/#/","fqdn":"pc.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"title":"drwinxgolballtd","dom":{"size":85261,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (59512)","md5":"9f334cbbd1bea8dcf374cf3ca8d1a9d6","sha1":"bda85df47b94849367742dd783991d8c4186471f","sha256":"80c46dbe1e25289e160db03b5270b4b8db391cbdebc22f17a7bc8997e11b0a3b","sha512":"591d2ecc1d89944c550d4b4adc6fbc24bd96b99dddb2a6216658576387ad4a8013a2a180725e6a37d82b963ef692adc7e76501bc8242196f6227a9c4f88af1f9","ssdeep":"1536:xcS4AmpWmlGoxfp9ppWFUmWsccc8tAz6AW2W+MYdUXTg4ccNkc6y2EU63ohUD7dP:x0hllmELL/WnxzzKK","tlshash":"e383b7726395467fd21b45dca0603b0a35e7f24feb479804a3ec435b6bd7c90cc9a9a8","dom_hash":"domhash923204b8b2ffb3106cb3f60a54dfd29e","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"m.drwinxglobaloos.cc","fqdn":"m.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"172.67.169.154","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-04-20T14:22:27Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":4}},"detection":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"pc.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"pc.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"m.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"m.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null},"summary":[{"fqdn":"m.drwinxglobaloos.cc","ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-07-30","domain_rank":0,"first_seen":"2026-03-16T14:22:30.488718Z","last_seen":"2026-03-16T14:22:30.488718Z","alert_count":18,"request_count":9,"received_data":358473,"sent_data":4180,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"pc.drwinxglobaloos.cc","ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-07-30","domain_rank":0,"first_seen":"2026-03-16T14:22:30.490538Z","last_seen":"2026-03-16T14:22:30.490538Z","alert_count":40,"request_count":20,"received_data":3117684,"sent_data":9231,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"api.drwinxglobaloos.cc","ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":0,"request_count":15,"received_data":149925,"sent_data":8616,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"m.drwinxglobaloos.cc/assets/chunk/chart7ae778c8.js","fqdn":"m.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"importedModule","is_inline":false,"md5":"56b65a09fa37902eb33645fff24cd6ef","sha1":"5f1f32a870fa7999d0335715b714650cf6ba604e","sha256":"8ff46c196428b15085edf4b3f691e5c1f6afb778b4d04256246c65432d95a8c3","sha512":"f65ea983fed324b906a3f1844fc2a0754ce919f016f4e52f7d4c9e94f88ef6483fd48761e1c23ef3a2d9ede62e237c9faec5fa65d5e6629b2be6995b858a7550","ssdeep":"3072:qRAfIwOQrBJgkQKXCMWeLPFNeCcQN2Z+yyfBGZLHgG4:9fpgkQKXCMWezFNeCcQNG+yyfBGZLHgZ","tlshash":"ef04d884fb6570155263a1b9423f1907b336369e940b86acb56fc9da2c6c0ca3277f7c","size":190221,"data":"","first_seen":"2025-03-07T20:39:04.974003Z","last_seen":"2026-06-09T19:08:23.088744Z","times_seen":58,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.drwinxglobaloos.cc/assets/chunk/requeste71a8939.js","fqdn":"m.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"importedModule","is_inline":false,"md5":"82745a9796daf73f35a18c8b9fb1384e","sha1":"d2eaa6336127edd3bcfb6401211856a2bac09a3a","sha256":"79136fcc51bc099ae77f9ee8c48e853d95952dcfa62693ea7085fc2db09212f0","sha512":"0240962154393fc296ce75d6c84f00e7ae4d63cbdb310d680654e8ab6fd2dfafba9d4141f449331e4ed5a9a5498502bc3ef19e1810a0894de5a736e8647bf518","ssdeep":"768:sydgzqmO9MQZLmAmvPeaIgN0qK9dvM5w4jcgw+TaSGJBtpiFbzFvephCdl9lm/jn:+IbSknBo9vn+66xTjno6q6","tlshash":"4cf229d57691b06193ea24f1407b0806f33a9526744e84e4f168aceb2cb640e97f7fbd","size":34589,"data":"","first_seen":"2025-08-03T16:13:07.013756Z","last_seen":"2026-03-16T14:52:09.852647Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.drwinxglobaloos.cc/assets/chunk/ui8383a7e6.js","fqdn":"m.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"importedModule","is_inline":false,"md5":"9e9901171d6a226bd746987f9a7aefa4","sha1":"019eeed0c7f8e3cfa67f7743c0094005e2f95897","sha256":"adb310347e36553027f87db9d1ae4b56626cc4f8751102b29dcd7dfff1cd952b","sha512":"fd15ef37835b78f28ad8bd87e4ab5d371c0bc091781c4f72c4d0893a72240a583caf19477f37f7f8b7d1baff779a3986792a70f55af8ede18f417d05549ec9ff","ssdeep":"3072:mC4PhDijJ5tAkChtdqdh0dzJ/FQv5k2J4Pf07pLQvv6tBH+ZzY1AXHYCX2i1zNw:mC4PhDFkChtdq6FQv5E0iytBH+Zzg+Yh","tlshash":"4da34c91b586b93c877b94c5509a1500b62c1f89f409c8e0f0be9d4a27eedd8f1b7f29","size":103534,"data":"","first_seen":"2026-03-16T14:22:36.342941Z","last_seen":"2026-03-16T14:52:09.848791Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.drwinxglobaloos.cc/assets/entry/index4b789c7c.js","fqdn":"m.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"01582c00485492fb506b750389d93bdb","sha1":"43077b60f918b0becc425e6d91dab848241dcf84","sha256":"220d43c65bc7c329c2c8aa165ad8ba8a9bfdf81d7dd1c5b13fd55ab4085882c2","sha512":"6e2656053be2273a687d1f1d4a73ba74f143dda50d84a910a42e7918ec14ce7d01a52c441fe89e29c09e6b66146e08f6f101e4cbee0b3339ad0f9660835a5931","ssdeep":"384:hB7HKgnCIOKWbTr9AtTtGgkAdU0gHphvB+Ws:htHKgnCX1XgZ9vm0wppXs","tlshash":"ab92d6f91b3c91fc55c70abebf2541d4370e64bb76b285e462ae9e785583c48e20be40","size":20200,"data":"","first_seen":"2026-03-16T14:22:36.340226Z","last_seen":"2026-03-16T14:52:09.84823Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pc.drwinxglobaloos.cc/assets/entry/index69a9bc81.js","fqdn":"pc.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"4ec7694ef133d33ee0cdaaf0d65f4023","sha1":"09bc6807f29b8b1fb1a28b45c041f9936ffb08a8","sha256":"0a672e53b8aef19e656877366c4dc0613b6d0e413428fb2f307ccba548936ba5","sha512":"31c56aca227cc2bf44a16a08419a7c604f935dfdfeac8ba1ea29af957a36dbf4f8fdd8d0d59d7fdd5da22c7c004622dd49765c3b3f151903f31a5dec1a7149cc","ssdeep":"3072:TKgia3cnbjApf4UfLzO3YXR03LyJG7XAZOfasMOwWfE:TKg4nuvTzO3xteVW8","tlshash":"a4d37e7a118628dc08b2d60af44f3b5858d41cebfb96d8d509fc8a6823f3d199197e3d","size":139778,"data":"","first_seen":"2025-11-30T17:21:53.61496Z","last_seen":"2026-03-16T14:52:09.846587Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pc.drwinxglobaloos.cc/assets/chunk/vendor86f0892d.js","fqdn":"pc.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"importedModule","is_inline":false,"md5":"3c759363559ededdc5e8a274782c811f","sha1":"f52bc10cf85e716e6c724ac349124363bdc323f0","sha256":"33c04d361414dbedf34655618834490a4f3092a0f0c151a3379faed14a284db2","sha512":"fab9f560cc1698c7c6a2723ea7f8981b262a55e4dc3051da7db6403224a781378e9b4a474c1683fc145b4ca915fcd9bc8201da5924467c9fc90b9cbcdf5f2a90","ssdeep":"12288:Vo+3dqE9m1hC4zjUoOZHStDyDh8FzDxu3mC68NG3fm1U8U8:Vo+3dqE9m1h2oOZHoDyDaFzumC6IYh8N","tlshash":"d8255da4ba55b46c43b781e9107f1002b33e2aad740e8864f1bdc8e9295bd49d367f7c","size":997450,"data":"","first_seen":"2025-11-30T17:21:53.59543Z","last_seen":"2026-03-16T14:52:09.83533Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pc.drwinxglobaloos.cc/assets/chunk/home28a0fc38.js","fqdn":"pc.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"c015cb3e88605b8821603c56ecc40ecd","sha1":"21a4830efe77e4b1b7b44e80d92ce904ef12ecd0","sha256":"53079d1dbd0dd7db5c59d54f3a9a4593196977756f84f03bb5627bbd97362204","sha512":"7f052df1ea7bd3b61dfa7ef13d7b0e28b5eecad2be40b5d28596a76ba376370fe94e645ef1f6a2f87866439db4427384885f91ae55efb20a12bbca186186dc0d","ssdeep":"3072:NNB07wL6LXK5TeBxFYLL4GGrdDYIKD64/2T602OnLq2YNX1OlN6twZAlzpnKgDpy:NNEspL41lNIpy","tlshash":"d6445b41b396d3fde273049e601ab000b2653deef690d9d1f1be8e171a62ce151adf26","size":270176,"data":"","first_seen":"2025-11-30T17:21:53.603383Z","last_seen":"2026-03-16T14:52:09.833636Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.drwinxglobaloos.cc/assets/chunk/views5b605005.js","fqdn":"m.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"importedModule","is_inline":false,"md5":"ce7ff3e60a3ecf0acd06d8b74b49188f","sha1":"0ccf2d09627e5d1f4e7b8a53b06933c8c6100b01","sha256":"95b409fd873500d335d8eab09bad2c2d2549ea856d2dc7d0148692361b377263","sha512":"d2af3b98b295c6b515f6cc2f7ade67871243f10a12bfecd9ffc6e2cbe6084147c2d76f1bdae835cd44cae2ba23dd3df43ff4d7190040eae9a1f819bb52f1d28b","ssdeep":"3072:D7dnjvfoLYjZ+Fz8r0O9hlXE58cBzIOSRPCY3fQ8cQd8OacpDwFA:FnsYl+Fz8r0O9hmaOELeQd3Fwu","tlshash":"e5346b56b5969dac8ab39949f44e3550b0482fefc246d8e221fd8e1133f3d24a295f3c","size":237127,"data":"","first_seen":"2026-03-16T14:22:36.353608Z","last_seen":"2026-03-16T14:52:09.850004Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.drwinxglobaloos.cc/","fqdn":"m.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"cd7a34e714de94d5c29b8ac5acdde24b","sha1":"b722bccb435490630d97ef88cafeb02d92f70fd0","sha256":"312ebfdc50a0e168cff60c206811b02e944263a7d9060c2685509dacfacd7f71","sha512":"a724bc648a508c24e5bb1788e1f02b47030893bbb0b80a99e380d95480095983a35d8ec11193c53f0a67db47a289ab608fcbc9dbca846bfdd5d61a8832290f43","ssdeep":"","tlshash":"58e07d48ff28c7f316ce28ab516e770858d104d58c1b58024cebccc86935ed87291527","size":314,"data":"","first_seen":"2023-03-11T11:23:25Z","last_seen":"2026-06-13T17:11:14.856439Z","times_seen":37531,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.drwinxglobaloos.cc/assets/chunk/i18n00ef8031.js","fqdn":"m.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"importedModule","is_inline":false,"md5":"5ba6824e2742fdd25d8e232cdf284316","sha1":"71069958de442da241a72a6aaaeb3ed47e810450","sha256":"8afdd08100262e8a3e40813e994423831d1e640f95bb362ec0f64d319ab217ae","sha512":"5dacd161e64884170a3acf151a0cdaa591801d6471a2f2888c6cdc24a06f73ba8b060833c80ca7db67f9e74d97f03a8245c4c8b1cb69780fcbc7415507cb1a25","ssdeep":"768:ZPatiWKGy3xs/jZIaGhqGkIAyVhRWIohYpWihWOGdDGAlEmCmBCb+4JqiB/2YVZV:QELsFIHhIIqlj4Rv","tlshash":"09e2c7c671e6b0020b3582d671b311139f2d075d385ee9d8f8a9e7873a17c4e43aaf69","size":31854,"data":"","first_seen":"2025-08-03T16:13:07.025215Z","last_seen":"2026-03-16T14:52:09.850517Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.drwinxglobaloos.cc/","fqdn":"m.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"528dd01eb509d1fc3c68b48e165c9d77","sha1":"8d702f33d869eb8c53cf75c17014f96385322395","sha256":"b508dff20bdbd9138e31aa48c45bc501805e509d2fd4709b39c4a60cd5c6b43a","sha512":"4c1edeec560f431005363ff5291acc80c1c42edf7c9a6d6e4fde2f7539b6a35a8e36f0bc228503263277bf5df4525dc579575faadca614c32e5dfa885a2d343b","ssdeep":"","tlshash":"78a012bb71b851710cd51ba7a40455e01c20123105052c101c8d5151c011c171d394c0","size":84,"data":"","first_seen":"2023-04-07T06:55:59Z","last_seen":"2026-06-13T17:11:14.857Z","times_seen":39772,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.drwinxglobaloos.cc/assets/chunk/vendorbe2f5db8.js","fqdn":"m.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"importedModule","is_inline":false,"md5":"573651f1468330d45b582156bf849849","sha1":"aa3781cd59badf46d1736f8aba8aa48bb4f04175","sha256":"d3c131e2715f2f4ba4381460794e5f6354f0241a794c47f9d90cea47b7291f6b","sha512":"777ce95411278b45ea9c5dfc02a6c561380e0e81117a62574f0447dc0b12ad06a87d2ee2dc888d6341f63fecb5f519056803cd567846e60d41a9fa5992da6243","ssdeep":"3072:AklhJEtn38nCP6AjDUnlHjmT+Nn0oFm68YYLAkI1XmYJG:AuEtn3ESindjUk0ZxYYp","tlshash":"bb141ae93182b46253ba15e640771006f37a1919380dc8d8f2adecdb3d7b84a91b7f6d","size":192728,"data":"","first_seen":"2025-08-03T16:13:06.99333Z","last_seen":"2026-03-16T14:52:09.851552Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.drwinxglobaloos.cc/assets/chunk/router42d99c49.js","fqdn":"m.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"importedModule","is_inline":false,"md5":"9d720e8e025e714798b3a723a4cf8a8a","sha1":"46e04dd6bc696ebd9080f184333e58897c938305","sha256":"eb2644c5050c3c53ceceeaed549f79e94e8f846a0d6ffc2b76068f15ea849b66","sha512":"0f2d62f7837274ad565556cbfe37c8c28c38f91dc0de235639a7826524797ffdd267ec192e9222988269a533c0b1378f6d0cd0a8cd46f500a8bd2650896f7f0e","ssdeep":"384:wBVP783clkPXveuCh8L0M/kIX5HJXcnNFViuk7KPjsUxfOg2d9RN5kgwSNIONOrn:MP1l2X1Ch8L3/BX5HJsNFVm7KLsUxfOy","tlshash":"92b2f8e932c2b025a7fa1ae2507e2115f23649c6384e84d1f25c58d33c37d99d2bbf69","size":23405,"data":"","first_seen":"2025-08-03T16:13:06.987334Z","last_seen":"2026-03-16T14:52:09.852073Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"pc.drwinxglobaloos.cc/assets/file/ru9776c19e.png","fqdn":"pc.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://pc.drwinxglobaloos.cc/","date":"2026-03-16T14:22:10.224Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"drwinxglobaloos.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 23 Jan 2026 05:39:26 GMT","end":"Thu, 23 Apr 2026 06:37:05 GMT"},"fingerprint":{"sha1":"51:51:C2:35:06:A3:59:9C:C2:DC:F9:D7:B0:11:AB:F5:82:DB:E5:96","sha256":"82:1C:C6:7F:20:65:68:86:BC:B7:E7:55:28:9E:58:C0:5B:0B:5B:C8:A8:90:E8:C5:EB:7C:F0:C2:10:5B:29:78"}}},"request":{"raw":"GET /assets/file/ru9776c19e.png HTTP/1.1\r\nHost: pc.drwinxglobaloos.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pc.drwinxglobaloos.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 16 Mar 2026 14:22:10 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Thu, 19 Jun 2025 17:55:44 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"68544f20-1421\"\r\nexpires: Wed, 15 Apr 2026 14:22:10 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=NPlmZmpjG77LSal1dlQUbcL9JlrDYdNKCGpnwfhmTAjlFClHXDVIP7jukQQk%2FgShLNzf%2Fox8OHBBX9zUwgmXfQ%2Bpf09upWlWEFxU41VQvG2Gl8G7dw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dd46891ef76b7b2-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5153,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1280 x 853, 8-bit/color RGB, non-interlaced","md5":"25037156513edecc307b7df26ce86da3","sha1":"2bcb7ca963fb0deb1616ecba74b0dff336ad9f10","sha256":"9776c19e1cb70b592cd49f533f90e7cbeb42e9f413e8e4d3255d6a5e39da4d44","sha512":"762c9cc6a236c33bf02400d9b3b7cc0fbab8258e9389a13cbb276894cff160d2a3e83dd772fd0a56f58b2c69ca92376f9fc21f2a01cc19464b852d0da44ed1b4","ssdeep":"96:6kkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkk8kkkkkkkkkkkkkkkkkkkkkkkkkkkB:A","tlshash":"5cb122aa9fa108adca25133cb7cf833e34735e9cb006871723c91c34ce8d10e1b5206a","first_seen":"2023-11-27T03:55:54Z","last_seen":"2026-06-11T20:24:30.124841Z","times_seen":218,"resource_available":false,"data":null}},"time_used":396,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":396,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"pc.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"pc.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.drwinxglobaloos.cc/api/default/setting?key=is_show_mobile\u0026t=1773670930355","fqdn":"api.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://pc.drwinxglobaloos.cc/","date":"2026-03-16T14:22:10.362Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"drwinxglobaloos.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 23 Jan 2026 05:39:26 GMT","end":"Thu, 23 Apr 2026 06:37:05 GMT"},"fingerprint":{"sha1":"51:51:C2:35:06:A3:59:9C:C2:DC:F9:D7:B0:11:AB:F5:82:DB:E5:96","sha256":"82:1C:C6:7F:20:65:68:86:BC:B7:E7:55:28:9E:58:C0:5B:0B:5B:C8:A8:90:E8:C5:EB:7C:F0:C2:10:5B:29:78"}}},"request":{"raw":"OPTIONS /api/default/setting?key=is_show_mobile\u0026t=1773670930355 HTTP/1.1\r\nHost: api.drwinxglobaloos.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: authorization,lang\r\nReferer: https://pc.drwinxglobaloos.cc/\r\nOrigin: https://pc.drwinxglobaloos.cc\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 16 Mar 2026 14:22:10 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: PUT,POST,GET,DELETE,OPTIONS\r\naccess-control-allow-headers: x-requested-with,Authorization,Content-Type,Origin,X-Auth-Token,lang\r\naccess-control-max-age: 86400\r\naccess-control-allow-credentials: true\r\ncontent-security-policy: script-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline';\r\nallow: GET,HEAD\r\ncache-control: no-cache, private\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2FGqx4YJ6FuTFK3ksEPK52f%2BRNO6KrUR2fEEQxuHgZhkTF8zSLkc05Ds%2FCyLf5RfF8tahgJivwJ9jRXJBq36Bo%2Bm5vwkL%2FdVRVJ9MLh%2FQEOPyOsj1E%2FM%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncf-ray: 9dd46892c97ab7b2-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-13T17:33:37.826371Z","times_seen":16391923,"resource_available":true,"data":null}},"time_used":260,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":260,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.drwinxglobaloos.cc/v1/api/forex/trade_list?t=1773670929368","fqdn":"api.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://pc.drwinxglobaloos.cc/","date":"2026-03-16T14:22:09.381Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"drwinxglobaloos.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 23 Jan 2026 05:39:26 GMT","end":"Thu, 23 Apr 2026 06:37:05 GMT"},"fingerprint":{"sha1":"51:51:C2:35:06:A3:59:9C:C2:DC:F9:D7:B0:11:AB:F5:82:DB:E5:96","sha256":"82:1C:C6:7F:20:65:68:86:BC:B7:E7:55:28:9E:58:C0:5B:0B:5B:C8:A8:90:E8:C5:EB:7C:F0:C2:10:5B:29:78"}}},"request":{"raw":"OPTIONS /v1/api/forex/trade_list?t=1773670929368 HTTP/1.1\r\nHost: api.drwinxglobaloos.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: authorization,lang\r\nReferer: https://pc.drwinxglobaloos.cc/\r\nOrigin: https://pc.drwinxglobaloos.cc\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/3 204 No Content\r\ndate: Mon, 16 Mar 2026 14:22:09 GMT\r\nserver: cloudflare\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: *\r\naccess-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE, UPDATE\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: Content-Length, Access-Control-Allow-Origin, Access-Control-Allow-Headers, Cache-Control, Content-Language, Content-Type\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=w0Vzmbuw78ZPyZnff51hvt0ZKqxmemiLNGCNoxp3BYyPdLrD%2FIm07J1eqetokJyvqgx80EFJV8UXpM9oSeJiz1qU5N0%2B8GGSGYRw3JO1VZP3%2BV5dcr0%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\ncf-ray: 9dd4688caa0ab7b2-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-13T17:33:37.826371Z","times_seen":16391923,"resource_available":true,"data":null}},"time_used":374,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":374,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pc.drwinxglobaloos.cc/assets/file/home8f64e152.css","fqdn":"pc.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://pc.drwinxglobaloos.cc/","date":"2026-03-16T14:22:09.382Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"drwinxglobaloos.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 23 Jan 2026 05:39:26 GMT","end":"Thu, 23 Apr 2026 06:37:05 GMT"},"fingerprint":{"sha1":"51:51:C2:35:06:A3:59:9C:C2:DC:F9:D7:B0:11:AB:F5:82:DB:E5:96","sha256":"82:1C:C6:7F:20:65:68:86:BC:B7:E7:55:28:9E:58:C0:5B:0B:5B:C8:A8:90:E8:C5:EB:7C:F0:C2:10:5B:29:78"}}},"request":{"raw":"GET /assets/file/home8f64e152.css HTTP/1.1\r\nHost: pc.drwinxglobaloos.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pc.drwinxglobaloos.cc/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 16 Mar 2026 14:22:09 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\nlast-modified: Thu, 19 Jun 2025 17:55:44 GMT\r\npriority: u=2,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"68544f20-8ca\"\r\nexpires: Tue, 17 Mar 2026 02:22:09 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=p%2F5XRf6ysPGIH1j3sCcMiAkrow50AGLAk3r61L5QqR76MhCo1WFnl7X41rbG%2FSJwAzP5%2F7ME%2BSpnlvnpXqhA%2FAFKjnWAGvL4x%2FgGqvdc7cYfc8jdDQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dd4688caa0db7b2-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2250,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (2249)","md5":"b94bb45fc987afe470761b6f3ef7d0c0","sha1":"84cf980cb98e6a862e494f05dcb6594d14ece3e3","sha256":"8f64e152185b01889f1c150ff02314c5ac7af5acafb6ddb2e8038a93a7f7ff64","sha512":"6cb914221f975568db518b1900de6a970c2dac5641fd858ebebd7ffbd6d316ffd4629e50cfd2f6a491dd22928bf24abee3d78e68c940ee98212d6dfb92e1df1f","ssdeep":"","tlshash":"7c4185b6f755033ea406da7eb6e16dedd726e633c2010764f780232882c75c625a1b5d","first_seen":"2025-11-30T17:21:53.608142Z","last_seen":"2026-03-16T14:52:09.839263Z","times_seen":3,"resource_available":false,"data":null}},"time_used":388,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":388,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"pc.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"pc.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.drwinxglobaloos.cc/v1/api/forex/getCategories?t=1773670930354","fqdn":"api.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://pc.drwinxglobaloos.cc/","date":"2026-03-16T14:22:10.988Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"drwinxglobaloos.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 23 Jan 2026 05:39:26 GMT","end":"Thu, 23 Apr 2026 06:37:05 GMT"},"fingerprint":{"sha1":"51:51:C2:35:06:A3:59:9C:C2:DC:F9:D7:B0:11:AB:F5:82:DB:E5:96","sha256":"82:1C:C6:7F:20:65:68:86:BC:B7:E7:55:28:9E:58:C0:5B:0B:5B:C8:A8:90:E8:C5:EB:7C:F0:C2:10:5B:29:78"}}},"request":{"raw":"GET /v1/api/forex/getCategories?t=1773670930354 HTTP/1.1\r\nHost: api.drwinxglobaloos.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlang: en\r\nauthorization: \r\nOrigin: https://pc.drwinxglobaloos.cc\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pc.drwinxglobaloos.cc/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 16 Mar 2026 14:22:11 GMT\r\ncontent-type: application/json; charset=utf-8\r\nserver: cloudflare\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: *\r\naccess-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE, UPDATE\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: Content-Length, Access-Control-Allow-Origin, Access-Control-Allow-Headers, Cache-Control, Content-Language, Content-Type\r\ncontent-encoding: gzip\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=mJiA4%2FyFvTCsmLGtj%2FKQEPQ8ca8lGuzuIqew0g%2BIJMUlQ%2BdPsg6Ttb7AtwApiBhve0y8CwwMCz6dnSkC6p63vGru7qYisfkdrjN4HsfvxUIcSq%2BQXvY%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dd468967aedb7b2-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1622,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"b871b10e3da2312834f75c1d050436eb","sha1":"052811b8f19383582dce8e79b4358253d59f6523","sha256":"aade7b2e83a6390eff4fa5ea8b28102d5a16060eacc933cc8e0e36ad847792d2","sha512":"4631cb7da8cd0f87aaf8e56b8f0471d2066850a01b2191d781173528d80f854e5cdc6f7121d6790ed1abae630303821000db2e55bcc0d03796765a2f310c6276","ssdeep":"","tlshash":"3c3103042f98f8cedc418d6c26b12d7fb5090a7f93416ea447cfd43e72aa9b52e92484","first_seen":"2025-06-01T05:36:04.731096Z","last_seen":"2026-05-18T14:04:30.015656Z","times_seen":62,"resource_available":false,"data":null}},"time_used":194,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":194,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pc.drwinxglobaloos.cc/assets/file/vendor00536ae4.css","fqdn":"pc.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://pc.drwinxglobaloos.cc/","date":"2026-03-16T14:22:07.362Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"drwinxglobaloos.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 23 Jan 2026 05:39:26 GMT","end":"Thu, 23 Apr 2026 06:37:05 GMT"},"fingerprint":{"sha1":"51:51:C2:35:06:A3:59:9C:C2:DC:F9:D7:B0:11:AB:F5:82:DB:E5:96","sha256":"82:1C:C6:7F:20:65:68:86:BC:B7:E7:55:28:9E:58:C0:5B:0B:5B:C8:A8:90:E8:C5:EB:7C:F0:C2:10:5B:29:78"}}},"request":{"raw":"GET /assets/file/vendor00536ae4.css HTTP/1.1\r\nHost: pc.drwinxglobaloos.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pc.drwinxglobaloos.cc/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 16 Mar 2026 14:22:07 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\nlast-modified: Thu, 19 Jun 2025 17:55:44 GMT\r\npriority: u=2,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"68544f20-1b4a5\"\r\nexpires: Tue, 17 Mar 2026 02:22:07 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Lp65owctlT%2FjmxUt1A7G2LptJkGqgPuIgfOAfkcF2NqjrZpSJKcdW3gVMkrFca0xU2Z8J95%2FwHiik7ikNxOMHLpZhuzL4oUA7JD5Ug%2BljBvIppR98w%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dd468800cf0b7b2-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":111781,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (65528), with no line terminators","md5":"d12af43edbe5b5aa1f6968c1130a0769","sha1":"f4327f33910cac2c2b63b08f2cfa031592b55222","sha256":"6187907875cb43dc2014f30b5f8c6688459e6dcbf37fd8f49992dafab523d010","sha512":"f416569380ab550fc4775072198039784dee82cce2e1df965a593531894eb87f704343eb8b8b019b84f5106130a4aa7670889814e89670f558249e3b46a4013a","ssdeep":"1536:98C7zB+LIcoFyVOdmMJ2E067cjcviYJkrn2kcndljjCxJfJBo:bsfDo","tlshash":"39b3a59ae753993b2c135a7d2ac4d9a9ab15cec1c8011765f784e00cd1c7eb123e7e3a","first_seen":"2025-11-30T17:21:53.611284Z","last_seen":"2026-04-19T08:44:29.62009Z","times_seen":6,"resource_available":false,"data":null}},"time_used":563,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":385,"receive":178,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"pc.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"pc.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.drwinxglobaloos.cc/api/company/getCompanyStatus?t=1773670929361","fqdn":"api.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://pc.drwinxglobaloos.cc/","date":"2026-03-16T14:22:09.375Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"drwinxglobaloos.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 23 Jan 2026 05:39:26 GMT","end":"Thu, 23 Apr 2026 06:37:05 GMT"},"fingerprint":{"sha1":"51:51:C2:35:06:A3:59:9C:C2:DC:F9:D7:B0:11:AB:F5:82:DB:E5:96","sha256":"82:1C:C6:7F:20:65:68:86:BC:B7:E7:55:28:9E:58:C0:5B:0B:5B:C8:A8:90:E8:C5:EB:7C:F0:C2:10:5B:29:78"}}},"request":{"raw":"OPTIONS /api/company/getCompanyStatus?t=1773670929361 HTTP/1.1\r\nHost: api.drwinxglobaloos.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: authorization,lang\r\nReferer: https://pc.drwinxglobaloos.cc/\r\nOrigin: https://pc.drwinxglobaloos.cc\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 16 Mar 2026 14:22:09 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: PUT,POST,GET,DELETE,OPTIONS\r\naccess-control-allow-headers: x-requested-with,Authorization,Content-Type,Origin,X-Auth-Token,lang\r\naccess-control-max-age: 86400\r\naccess-control-allow-credentials: true\r\ncontent-security-policy: script-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline';\r\nallow: GET,HEAD\r\ncache-control: no-cache, private\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=pn306Tzb%2FFgK70ZHCqi95yzWQxK7CAQ9mmS1UI6wdXSKgOzEIHmwcPpHLok2bfpvim9BkLETWf%2BMYfr%2Bavqut5Dnzou28O51iil%2BQ9nQgN3Y5Iw6%2FZ4%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncf-ray: 9dd4688c99f9b7b2-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-13T17:33:37.826371Z","times_seen":16391923,"resource_available":true,"data":null}},"time_used":469,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":469,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pc.drwinxglobaloos.cc/assets/file/spa84479ee4.png","fqdn":"pc.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://pc.drwinxglobaloos.cc/","date":"2026-03-16T14:22:10.227Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"drwinxglobaloos.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 23 Jan 2026 05:39:26 GMT","end":"Thu, 23 Apr 2026 06:37:05 GMT"},"fingerprint":{"sha1":"51:51:C2:35:06:A3:59:9C:C2:DC:F9:D7:B0:11:AB:F5:82:DB:E5:96","sha256":"82:1C:C6:7F:20:65:68:86:BC:B7:E7:55:28:9E:58:C0:5B:0B:5B:C8:A8:90:E8:C5:EB:7C:F0:C2:10:5B:29:78"}}},"request":{"raw":"GET /assets/file/spa84479ee4.png HTTP/1.1\r\nHost: pc.drwinxglobaloos.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pc.drwinxglobaloos.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 16 Mar 2026 14:22:10 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Thu, 19 Jun 2025 17:55:44 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"68544f20-20c2\"\r\nexpires: Wed, 15 Apr 2026 14:22:10 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=mz5oPIYGIdJ7HsdmNGKuiPn8M8seB2leJ84cWIa374PYoi48Qj6B9OqnfrsTmXKnD6Etjn6lbIn5ped%2B9wLB1HR3oddk0blhsspa1xZYdEDLdf7dDw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dd46891ff7db7b2-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":8386,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1458 x 972, 8-bit/color RGBA, non-interlaced","md5":"e6245ac0f8da16662b1f8da60730027c","sha1":"0f1560e6bc08b0e94bc258fbfca0c7210bfa448d","sha256":"84479ee4cd16a169c8fe1ed2e9dc4603a181a4167d2b6f68ba8eda2d86e452f0","sha512":"18099200046d11315551bd0a2c2619f99e926bcb7c9ac1cec1f019101b447376bf5a97bedf74ece82e3ea6c6ce7bf3b09f943dcf50ff871d38c2e55f477f2087","ssdeep":"24:LJeuhVu/KeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeU:LNhVuGacVOIhxEBei4yMPMJtJZ","tlshash":"8d0257fda316a061fc4230b77823e130a67a31eb451fab5be519b0874a0f5ff91a0548","first_seen":"2023-11-22T06:43:07Z","last_seen":"2026-06-11T20:24:30.099659Z","times_seen":230,"resource_available":false,"data":null}},"time_used":394,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":394,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"pc.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"pc.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pc.drwinxglobaloos.cc/assets/chunk/vendor86f0892d.js","fqdn":"pc.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://pc.drwinxglobaloos.cc/","date":"2026-03-16T14:22:09.331Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"drwinxglobaloos.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 23 Jan 2026 05:39:26 GMT","end":"Thu, 23 Apr 2026 06:37:05 GMT"},"fingerprint":{"sha1":"51:51:C2:35:06:A3:59:9C:C2:DC:F9:D7:B0:11:AB:F5:82:DB:E5:96","sha256":"82:1C:C6:7F:20:65:68:86:BC:B7:E7:55:28:9E:58:C0:5B:0B:5B:C8:A8:90:E8:C5:EB:7C:F0:C2:10:5B:29:78"}}},"request":{"raw":"GET /assets/chunk/vendor86f0892d.js HTTP/1.1\r\nHost: pc.drwinxglobaloos.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://pc.drwinxglobaloos.cc/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 16 Mar 2026 14:22:09 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Thu, 19 Jun 2025 17:55:44 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"68544f20-f384a\"\r\nexpires: Tue, 17 Mar 2026 02:22:08 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\nage: 0\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=q1lCb9DCmVo%2BVGzn6a8Kum4WwHJHVi%2FbfRNS9gcj%2F0X2XObmihznUAMiGwUdkRRFT8EV5pdKy6xm5iPYx%2BrpPYrDfhanmI%2FPrEVurv8nLegQiaeTMg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dd4688c5968b7b2-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":997450,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (31520)","md5":"3c759363559ededdc5e8a274782c811f","sha1":"f52bc10cf85e716e6c724ac349124363bdc323f0","sha256":"33c04d361414dbedf34655618834490a4f3092a0f0c151a3379faed14a284db2","sha512":"fab9f560cc1698c7c6a2723ea7f8981b262a55e4dc3051da7db6403224a781378e9b4a474c1683fc145b4ca915fcd9bc8201da5924467c9fc90b9cbcdf5f2a90","ssdeep":"12288:Vo+3dqE9m1hC4zjUoOZHStDyDh8FzDxu3mC68NG3fm1U8U8:Vo+3dqE9m1h2oOZHoDyDaFzumC6IYh8N","tlshash":"d8255da4ba55b46c43b781e9107f1002b33e2aad740e8864f1bdc8e9295bd49d367f7c","first_seen":"2025-11-30T17:21:53.59543Z","last_seen":"2026-03-16T14:52:09.83533Z","times_seen":3,"resource_available":true,"data":null}},"time_used":30,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":13,"receive":17,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"pc.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"pc.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.drwinxglobaloos.cc/api/basicSet/getBasicInfo?t=1773670929366","fqdn":"api.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://pc.drwinxglobaloos.cc/","date":"2026-03-16T14:22:09.379Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"drwinxglobaloos.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 23 Jan 2026 05:39:26 GMT","end":"Thu, 23 Apr 2026 06:37:05 GMT"},"fingerprint":{"sha1":"51:51:C2:35:06:A3:59:9C:C2:DC:F9:D7:B0:11:AB:F5:82:DB:E5:96","sha256":"82:1C:C6:7F:20:65:68:86:BC:B7:E7:55:28:9E:58:C0:5B:0B:5B:C8:A8:90:E8:C5:EB:7C:F0:C2:10:5B:29:78"}}},"request":{"raw":"OPTIONS /api/basicSet/getBasicInfo?t=1773670929366 HTTP/1.1\r\nHost: api.drwinxglobaloos.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: authorization,lang\r\nReferer: https://pc.drwinxglobaloos.cc/\r\nOrigin: https://pc.drwinxglobaloos.cc\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 16 Mar 2026 14:22:09 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: PUT,POST,GET,DELETE,OPTIONS\r\naccess-control-allow-headers: x-requested-with,Authorization,Content-Type,Origin,X-Auth-Token,lang\r\naccess-control-max-age: 86400\r\naccess-control-allow-credentials: true\r\ncontent-security-policy: script-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline';\r\nallow: GET,HEAD\r\ncache-control: no-cache, private\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=1fWlyE9vA%2FFEQD8Ix5T97wytWM275f%2FURxPiNqOadkddXnStA5vBq1eoxjTqDXXn1V%2FKMp%2BZNfHRTXfO8%2BpKN2Mgq9DT7AJQJmcin63F0kpTtAI9BVI%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncf-ray: 9dd4688caa01b7b2-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-13T17:33:37.826371Z","times_seen":16391923,"resource_available":true,"data":null}},"time_used":459,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":459,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pc.drwinxglobaloos.cc/assets/file/en140ceb36.png","fqdn":"pc.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://pc.drwinxglobaloos.cc/","date":"2026-03-16T14:22:10.214Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"drwinxglobaloos.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 23 Jan 2026 05:39:26 GMT","end":"Thu, 23 Apr 2026 06:37:05 GMT"},"fingerprint":{"sha1":"51:51:C2:35:06:A3:59:9C:C2:DC:F9:D7:B0:11:AB:F5:82:DB:E5:96","sha256":"82:1C:C6:7F:20:65:68:86:BC:B7:E7:55:28:9E:58:C0:5B:0B:5B:C8:A8:90:E8:C5:EB:7C:F0:C2:10:5B:29:78"}}},"request":{"raw":"GET /assets/file/en140ceb36.png HTTP/1.1\r\nHost: pc.drwinxglobaloos.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pc.drwinxglobaloos.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 16 Mar 2026 14:22:10 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Thu, 19 Jun 2025 17:55:44 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"68544f20-b18a\"\r\nexpires: Wed, 15 Apr 2026 14:22:10 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Wmf091te6G%2B6T2BC4ZrDEVqI8SVLdSj8lIVJloTfPaHE5SxujHz8OPpc3njUpUd%2FSSaDsV07IYzx4Wb24Ej%2BDlOQ8xe53lLscZXlfkrgaM7pVt0%2Big%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dd46891df5cb7b2-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":45450,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1280 x 674, 8-bit/color RGB, non-interlaced","md5":"bbe24ecfd14ccaf03c3d2e129dda43f6","sha1":"d94634c905fc9f686c9cac6d34b28d7b6bfccb6b","sha256":"140ceb367bbf5b758adeca9edde1a0997636beb738f25e8c58aa8ad4fc0a8b67","sha512":"f429befdc35dfb252955c62c0c7d34f8328ecf78cb30046e7c3805b6321c8d0f1b562a7fb1f7f499f22f149318f7af96f60b3917e6a48289e77515b6cd3f38ba","ssdeep":"768:LDHOMVkhoc/xNEdxnencUk3ybpRL6zuiptHAV3YmYFTukO:LDB0oc/oGncP3ybfxirClJl","tlshash":"8813c03cf8d2b791d11c8937a0d62367dd325e5d2058cba30b09bd256ec0d668beed19","first_seen":"2023-11-22T06:43:07Z","last_seen":"2026-06-11T20:24:30.120122Z","times_seen":204,"resource_available":false,"data":null}},"time_used":405,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":197,"receive":208,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"pc.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"pc.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.drwinxglobaloos.cc/v1/api/forex/kline?forex_id=106\u0026period=1min\u0026from=1773640920000\u0026to=1773670920000\u0026t=1773670930752","fqdn":"api.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://pc.drwinxglobaloos.cc/","date":"2026-03-16T14:22:11.223Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"drwinxglobaloos.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 23 Jan 2026 05:39:26 GMT","end":"Thu, 23 Apr 2026 06:37:05 GMT"},"fingerprint":{"sha1":"51:51:C2:35:06:A3:59:9C:C2:DC:F9:D7:B0:11:AB:F5:82:DB:E5:96","sha256":"82:1C:C6:7F:20:65:68:86:BC:B7:E7:55:28:9E:58:C0:5B:0B:5B:C8:A8:90:E8:C5:EB:7C:F0:C2:10:5B:29:78"}}},"request":{"raw":"GET /v1/api/forex/kline?forex_id=106\u0026period=1min\u0026from=1773640920000\u0026to=1773670920000\u0026t=1773670930752 HTTP/1.1\r\nHost: api.drwinxglobaloos.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlang: en\r\nauthorization: \r\nOrigin: https://pc.drwinxglobaloos.cc\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pc.drwinxglobaloos.cc/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 16 Mar 2026 14:22:11 GMT\r\ncontent-type: application/json; charset=utf-8\r\nserver: cloudflare\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: *\r\naccess-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE, UPDATE\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: Content-Length, Access-Control-Allow-Origin, Access-Control-Allow-Headers, Cache-Control, Content-Language, Content-Type\r\ncontent-encoding: gzip\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=UUeohwQrO3CNYRjc6wcz%2FKFTDLpTJeg4lzKyY0rMcoWNvfl%2FDuezyo%2FYXX6Uf31HVYtIwJ0QtquMLliWiUZtx2xv1QzpYfqgu8xDJK7SBbF9shxSsdc%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dd468982eccb7b2-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":76171,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"bcd7c86500cba449679c915bb5eb83a3","sha1":"fcfca7f6b1d5434a97647008191828565b25a173","sha256":"5f220bd919a10f7c308072748b53b9abbd0f1872ba39ef975696ebecd9598b21","sha512":"2fc86dfcb228725dea4a043c5daf85b81fa5db4dc44c6f2e60afe3501b1a1639d61f5610f0bfe838156459b0f024b6d060d65e572d3aa49608340b2fb117be0c","ssdeep":"768:beVqhqXjFY38krpid/AIqDaUIeWKW9/Moa:beICjFWrRaUgI","tlshash":"cd731740275a0594c036abdec87bb8f5cea937ef8bf95b8e61bf8c7700e002d1549995","first_seen":"2026-03-16T14:22:36.317233Z","last_seen":"2026-03-16T14:22:36.317233Z","times_seen":1,"resource_available":false,"data":null}},"time_used":382,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":203,"receive":179,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.drwinxglobaloos.cc/","fqdn":"m.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-16T14:22:05.036Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"drwinxglobaloos.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 23 Jan 2026 05:39:26 GMT","end":"Thu, 23 Apr 2026 06:37:05 GMT"},"fingerprint":{"sha1":"51:51:C2:35:06:A3:59:9C:C2:DC:F9:D7:B0:11:AB:F5:82:DB:E5:96","sha256":"82:1C:C6:7F:20:65:68:86:BC:B7:E7:55:28:9E:58:C0:5B:0B:5B:C8:A8:90:E8:C5:EB:7C:F0:C2:10:5B:29:78"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: m.drwinxglobaloos.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 16 Mar 2026 14:22:05 GMT\r\ncontent-type: text/html; charset=utf-8\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: Accept-Encoding\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: *\r\naccess-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE, UPDATE\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: Content-Length, Access-Control-Allow-Origin, Access-Control-Allow-Headers, Cache-Control, Content-Language, Content-Type\r\ncache-control: no-cache\r\nexpires: 0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=nAiBv28BAV0duqW%2BPJF%2FgUQVqpS7%2F%2BtlVeJrVCxqmgcGxoKq0InnBbHjn3g%2F9Ux1hslKxB%2B%2FKqNBn7cKz4r4XwZjePIago7NvtRUa5VoQhEAC799\"}]}\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: 9dd46871eddb2767-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4411,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (433)","md5":"f933bef23d860dfe0e2b443b499eec10","sha1":"627b97b3b33d5ec33c9585e931e893a993d987b5","sha256":"5f10f180ede9af975eb8ac3abc6d95b50ccbe81bd62b7dd53d67a9a15901aad9","sha512":"eda1b33d3f273d8d9aca684236bec6b9033a407b1caede0f124a5ef4bad1eeb2905b3f4bb81694b908d66d5cbaf948ddb365cade2669c4f919659317f3f5d3d5","ssdeep":"96:TbYd428JLc+ytJQwJVJiiIjAo5r6zCZydHRH/eeMuB1XiH5iHGH/XM:TbYi28JLc+ytKwLciIjnZCxfdMuB1XiK","tlshash":"7591744497a388a681536a069e9ef41436f3d213840efc00b9efa0a8cf50fad9dd3994","first_seen":"2026-03-16T14:22:36.320106Z","last_seen":"2026-03-16T14:52:09.836879Z","times_seen":2,"resource_available":false,"data":null}},"time_used":520,"timings":{"blocked":65,"dns":31,"connect":8,"send":0,"wait":390,"receive":0,"ssl":23},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"m.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"m.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"m.drwinxglobaloos.cc/assets/file/ui48c3661f.css","fqdn":"m.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://m.drwinxglobaloos.cc/","date":"2026-03-16T14:22:05.637Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"drwinxglobaloos.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 23 Jan 2026 05:39:26 GMT","end":"Thu, 23 Apr 2026 06:37:05 GMT"},"fingerprint":{"sha1":"51:51:C2:35:06:A3:59:9C:C2:DC:F9:D7:B0:11:AB:F5:82:DB:E5:96","sha256":"82:1C:C6:7F:20:65:68:86:BC:B7:E7:55:28:9E:58:C0:5B:0B:5B:C8:A8:90:E8:C5:EB:7C:F0:C2:10:5B:29:78"}}},"request":{"raw":"GET /assets/file/ui48c3661f.css HTTP/1.1\r\nHost: m.drwinxglobaloos.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.drwinxglobaloos.cc/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 16 Mar 2026 14:22:06 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\nlast-modified: Thu, 19 Jun 2025 17:57:29 GMT\r\npriority: u=2,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"68544f89-1b32b\"\r\nexpires: Tue, 17 Mar 2026 02:22:05 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=aOZLK8wjaFIInF380SBWmT4kn8Kac5sVMiNxfJbFIicTppgf9o85j1KhqRczfLbYjX45S8XOg1c%2FMj09l8XGobASDXYpjPOL%2FITuszBGPRNgP86n\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dd468753cdbb7b2-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":111403,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (65018), with no line terminators","md5":"cd4d8d3a12c6279285f42ba7093bfb8f","sha1":"411cea10204276ade5b188c17781cc23b6d89d17","sha256":"48c3661f0ffe0af8164ebca5919b5045c3d6a456e73405949cf5b7251698c351","sha512":"0abb569278df6b0a53e107a67eeaa9938e9801e190e8c88ad4ae0e3c5a39b28c50df59c2ab2332867504875ed94821255ba165a01061a3bbe8fa99b93b5d2e87","ssdeep":"1536:aWIyNBi3MFYaQj7FCwsBlDOFIxuVoxeXoqe:a6NIClDsIxuVSete","tlshash":"f8b3d6a5eac091fc7f16f265ab8766d8f13cb970cd40caa5f105515d0ecbbf50223a2a","first_seen":"2025-08-03T16:13:07.012096Z","last_seen":"2026-05-18T14:03:34.971524Z","times_seen":17,"resource_available":false,"data":null}},"time_used":745,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":386,"receive":359,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"m.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"m.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pc.drwinxglobaloos.cc/logo.png","fqdn":"pc.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://pc.drwinxglobaloos.cc/","date":"2026-03-16T14:22:11.332Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"drwinxglobaloos.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 23 Jan 2026 05:39:26 GMT","end":"Thu, 23 Apr 2026 06:37:05 GMT"},"fingerprint":{"sha1":"51:51:C2:35:06:A3:59:9C:C2:DC:F9:D7:B0:11:AB:F5:82:DB:E5:96","sha256":"82:1C:C6:7F:20:65:68:86:BC:B7:E7:55:28:9E:58:C0:5B:0B:5B:C8:A8:90:E8:C5:EB:7C:F0:C2:10:5B:29:78"}}},"request":{"raw":"GET /logo.png HTTP/1.1\r\nHost: pc.drwinxglobaloos.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pc.drwinxglobaloos.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 16 Mar 2026 14:22:11 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Thu, 19 Jun 2025 17:55:34 GMT\r\npriority: u=6,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"68544f16-f1af\"\r\nexpires: Wed, 15 Apr 2026 14:22:10 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\nage: 0\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=bs8jyqtT1arAdzYDJt%2Fj3nallaV3sr1iPvoKCv0S8GQxJof%2FBDntdRbCEEQAcGCaa1qaZmhI%2BOH18o%2FsPXKaXS5F5z9yGNdOY8i7XLdhl8lME%2BLCxg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dd46898d869b7b2-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":61871,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1200 x 900, 8-bit/color RGBA, non-interlaced","md5":"be76f5e4a2d60eae642de4ae6c726002","sha1":"3787b12fde6bdea9b7057eb6e85b818b8240c0ac","sha256":"65fe3972e94d3e4444733e3726797b58d5cd5769462df76d8f5fd9af7a8b5746","sha512":"4121f7d34c6f9037c2eba2375455e2b4d1d1aa749ad6739bf9bf690e59f279932a447e19a05cb933e166165b547fb707631e37ecb4918ae3e659e178659c6f4d","ssdeep":"1536:dLp9pYwqZ4Gkeeqv2cVwT/dvtM56nTpNzok:JN84OH2cVwp656tNV","tlshash":"3f53ae78b4e0d001cc10cdbeb8a98a09b3fbab44bfe4d1b6b5099450fc1676d65973b6","first_seen":"2025-11-30T17:21:53.596671Z","last_seen":"2026-03-16T14:52:09.838046Z","times_seen":3,"resource_available":false,"data":null}},"time_used":15,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":14,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"pc.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"pc.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pc.drwinxglobaloos.cc/logo.png","fqdn":"pc.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://pc.drwinxglobaloos.cc/","date":"2026-03-16T14:22:10.174Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"drwinxglobaloos.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 23 Jan 2026 05:39:26 GMT","end":"Thu, 23 Apr 2026 06:37:05 GMT"},"fingerprint":{"sha1":"51:51:C2:35:06:A3:59:9C:C2:DC:F9:D7:B0:11:AB:F5:82:DB:E5:96","sha256":"82:1C:C6:7F:20:65:68:86:BC:B7:E7:55:28:9E:58:C0:5B:0B:5B:C8:A8:90:E8:C5:EB:7C:F0:C2:10:5B:29:78"}}},"request":{"raw":"GET /logo.png HTTP/1.1\r\nHost: pc.drwinxglobaloos.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pc.drwinxglobaloos.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-13T17:33:37.826371Z","times_seen":16391923,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"pc.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"pc.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pc.drwinxglobaloos.cc/","fqdn":"pc.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-16T14:22:06.888Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"drwinxglobaloos.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 23 Jan 2026 05:39:26 GMT","end":"Thu, 23 Apr 2026 06:37:05 GMT"},"fingerprint":{"sha1":"51:51:C2:35:06:A3:59:9C:C2:DC:F9:D7:B0:11:AB:F5:82:DB:E5:96","sha256":"82:1C:C6:7F:20:65:68:86:BC:B7:E7:55:28:9E:58:C0:5B:0B:5B:C8:A8:90:E8:C5:EB:7C:F0:C2:10:5B:29:78"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: pc.drwinxglobaloos.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.drwinxglobaloos.cc/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 16 Mar 2026 14:22:07 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\nlast-modified: Thu, 19 Jun 2025 17:55:44 GMT\r\npriority: u=1,i=?0\r\nvary: Accept-Encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=AXiJNFr%2FTbTXdvtMKLebBarlm5q1d2DHZhwuQJAdsColMHbscPhYR04pEsfKYk6DNdGnDOO8P3sUPMlrOt3aElzWE0w2NpKrVfhsmjyqxQ5xyyTJ%2Fw%3D%3D\"}]}\r\ncontent-encoding: br\r\ncf-ray: 9dd4687d5f16b7b2-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2468,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text","md5":"aba74e9cc5e4a6642b61d7adde006d5c","sha1":"862e0ae497ac210d613a817b860600070cffcca9","sha256":"c34ae4d13157cace7fd5d48e0e452bf072067cd6d163a92386bffe4dc1d0d342","sha512":"4665ce3e00910b4f6edfa856a6c715dcfce672e2e4a7112044cfd490a055b106ebec9c05504bdc8ce445f58e19425bcc0db6b3cb18fff2c2afc921e5a4130a34","ssdeep":"","tlshash":"4c51bb484793495491a3e1044f9a992563b3d01b964ebc42bfdfa098cfe6b7da8c7b80","first_seen":"2025-11-30T17:21:53.590818Z","last_seen":"2026-03-16T14:52:09.843717Z","times_seen":3,"resource_available":false,"data":null}},"time_used":422,"timings":{"blocked":40,"dns":0,"connect":0,"send":0,"wait":382,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"pc.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"pc.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pc.drwinxglobaloos.cc/assets/chunk/home28a0fc38.js","fqdn":"pc.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://pc.drwinxglobaloos.cc/","date":"2026-03-16T14:22:09.772Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"drwinxglobaloos.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 23 Jan 2026 05:39:26 GMT","end":"Thu, 23 Apr 2026 06:37:05 GMT"},"fingerprint":{"sha1":"51:51:C2:35:06:A3:59:9C:C2:DC:F9:D7:B0:11:AB:F5:82:DB:E5:96","sha256":"82:1C:C6:7F:20:65:68:86:BC:B7:E7:55:28:9E:58:C0:5B:0B:5B:C8:A8:90:E8:C5:EB:7C:F0:C2:10:5B:29:78"}}},"request":{"raw":"GET /assets/chunk/home28a0fc38.js HTTP/1.1\r\nHost: pc.drwinxglobaloos.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pc.drwinxglobaloos.cc/assets/entry/index69a9bc81.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 16 Mar 2026 14:22:09 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Thu, 19 Jun 2025 17:55:44 GMT\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"68544f20-41f60\"\r\nexpires: Tue, 17 Mar 2026 02:22:09 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\nage: 0\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Fvfyjxy31a6VbvTb9mN8GS68sLoD%2BtoKZmzRi0RIQx4kH%2BYjokqvBIimwvr2NlU29UB9YuA8ViqJcizWJkQl%2BncoYfVhBc4rqdHqtPAjUfMcBsmfzA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dd4688f1f9db7b2-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":270176,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"c015cb3e88605b8821603c56ecc40ecd","sha1":"21a4830efe77e4b1b7b44e80d92ce904ef12ecd0","sha256":"53079d1dbd0dd7db5c59d54f3a9a4593196977756f84f03bb5627bbd97362204","sha512":"7f052df1ea7bd3b61dfa7ef13d7b0e28b5eecad2be40b5d28596a76ba376370fe94e645ef1f6a2f87866439db4427384885f91ae55efb20a12bbca186186dc0d","ssdeep":"3072:NNB07wL6LXK5TeBxFYLL4GGrdDYIKD64/2T602OnLq2YNX1OlN6twZAlzpnKgDpy:NNEspL41lNIpy","tlshash":"d6445b41b396d3fde273049e601ab000b2653deef690d9d1f1be8e171a62ce151adf26","first_seen":"2025-11-30T17:21:53.603383Z","last_seen":"2026-03-16T14:52:09.833636Z","times_seen":3,"resource_available":true,"data":null}},"time_used":354,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":15,"receive":339,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"pc.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"pc.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pc.drwinxglobaloos.cc/assets/chunk/vendor86f0892d.js","fqdn":"pc.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://pc.drwinxglobaloos.cc/","date":"2026-03-16T14:22:08.126Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"drwinxglobaloos.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 23 Jan 2026 05:39:26 GMT","end":"Thu, 23 Apr 2026 06:37:05 GMT"},"fingerprint":{"sha1":"51:51:C2:35:06:A3:59:9C:C2:DC:F9:D7:B0:11:AB:F5:82:DB:E5:96","sha256":"82:1C:C6:7F:20:65:68:86:BC:B7:E7:55:28:9E:58:C0:5B:0B:5B:C8:A8:90:E8:C5:EB:7C:F0:C2:10:5B:29:78"}}},"request":{"raw":"GET /assets/chunk/vendor86f0892d.js HTTP/1.1\r\nHost: pc.drwinxglobaloos.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pc.drwinxglobaloos.cc/assets/entry/index69a9bc81.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 16 Mar 2026 14:22:08 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Thu, 19 Jun 2025 17:55:44 GMT\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"68544f20-f384a\"\r\nexpires: Tue, 17 Mar 2026 02:22:08 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=4gECZRZJJCJwD%2BG%2Fb8H0FTBHiqpNA7R0IV8M69eVF%2Fa0htGiY0UmgUmST2hTwpGUOQRJnqu3dCOnWE1ApH3uIHJia2T7%2Be38xK4uPntUGM5FWkjsgw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dd46884d81bb7b2-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":997450,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (31520)","md5":"92ef869d1d429bb47b0eb0eab41eeb85","sha1":"7564a13a95f190c2ada609c76b3ce48c9e05fcb7","sha256":"93fcf1e5ec36df44f110b649cb526eb51257454a8044f9411af5e8e07bea8da6","sha512":"56b3847d125f669789f83f20d48c7dfdfee401a6e595928d928eb78cc555e4884449d1221cf167c9990ac2ec4f64f4b6e2dee533598ae8f04c8ae0550515a303","ssdeep":"12288:Vo+3dqE9m1hC4zjUoOZHStDyDh8FzDxu3mC68N55Sz3fm1U8U8:Vo+3dqE9m1h2oOZHoDyDaFzumC6IYh8N","tlshash":"1a256d94ba55b46c43b781e9107f1002b33e2aad740e8864f1bdc8e9296bd49d367f7c","first_seen":"2026-03-16T14:22:36.329549Z","last_seen":"2026-03-16T14:22:36.329549Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1098,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":375,"receive":723,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"pc.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"pc.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.drwinxglobaloos.cc/api/user/info?t=1773670929369","fqdn":"api.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://pc.drwinxglobaloos.cc/","date":"2026-03-16T14:22:09.385Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"drwinxglobaloos.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 23 Jan 2026 05:39:26 GMT","end":"Thu, 23 Apr 2026 06:37:05 GMT"},"fingerprint":{"sha1":"51:51:C2:35:06:A3:59:9C:C2:DC:F9:D7:B0:11:AB:F5:82:DB:E5:96","sha256":"82:1C:C6:7F:20:65:68:86:BC:B7:E7:55:28:9E:58:C0:5B:0B:5B:C8:A8:90:E8:C5:EB:7C:F0:C2:10:5B:29:78"}}},"request":{"raw":"OPTIONS /api/user/info?t=1773670929369 HTTP/1.1\r\nHost: api.drwinxglobaloos.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: authorization,lang\r\nReferer: https://pc.drwinxglobaloos.cc/\r\nOrigin: https://pc.drwinxglobaloos.cc\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 16 Mar 2026 14:22:09 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: PUT,POST,GET,DELETE,OPTIONS\r\naccess-control-allow-headers: x-requested-with,Authorization,Content-Type,Origin,X-Auth-Token,lang\r\naccess-control-max-age: 86400\r\naccess-control-allow-credentials: true\r\ncontent-security-policy: script-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline';\r\nallow: GET,HEAD\r\ncache-control: no-cache, private\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ML5LJ1eVs6DD3B81p%2B91pGuJQYq8NBxSadDDug7yzNVvj%2FJA9OeKbQMFwmKPn5KKZc%2BNjGu6Lxry8T2dp4DGc2RwhrS2sxMjkevBucbcC1ci6wZhDyo%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncf-ray: 9dd4688caa14b7b2-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-13T17:33:37.826371Z","times_seen":16391923,"resource_available":true,"data":null}},"time_used":455,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":455,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.drwinxglobaloos.cc/api/basicSet/getBasicInfo?t=1773670929366","fqdn":"api.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://pc.drwinxglobaloos.cc/","date":"2026-03-16T14:22:09.838Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"drwinxglobaloos.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 23 Jan 2026 05:39:26 GMT","end":"Thu, 23 Apr 2026 06:37:05 GMT"},"fingerprint":{"sha1":"51:51:C2:35:06:A3:59:9C:C2:DC:F9:D7:B0:11:AB:F5:82:DB:E5:96","sha256":"82:1C:C6:7F:20:65:68:86:BC:B7:E7:55:28:9E:58:C0:5B:0B:5B:C8:A8:90:E8:C5:EB:7C:F0:C2:10:5B:29:78"}}},"request":{"raw":"GET /api/basicSet/getBasicInfo?t=1773670929366 HTTP/1.1\r\nHost: api.drwinxglobaloos.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlang: en\r\nauthorization: \r\nOrigin: https://pc.drwinxglobaloos.cc\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pc.drwinxglobaloos.cc/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 16 Mar 2026 14:22:10 GMT\r\ncontent-type: application/json\r\nserver: cloudflare\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: PUT,POST,GET,DELETE,OPTIONS\r\naccess-control-allow-headers: x-requested-with,Authorization,Content-Type,Origin,X-Auth-Token,lang\r\naccess-control-max-age: 86400\r\naccess-control-allow-credentials: true\r\ncontent-security-policy: script-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline';\r\ncache-control: no-cache, private\r\nset-cookie: drwinx_session=eyJpdiI6InpTZFEwODA3cE5xRjBVMitVUEVyQmc9PSIsInZhbHVlIjoiTlFZSXdITDhseUlXZkcxdytyY2UxaitiUkJqSTk0ZUxlR2hwWENmeGl2TG9DT09HYWJmSnJtaGoxYm8raTJnNHRockNoRU10c2EzNjNJVHJjdWRNbDlDUHZiUlwvdDlZK0grQWlzK1dzY2MzUjZqYko2SGUrbTBlVE9cL3g3dm5sRCIsIm1hYyI6IjJmNjUyYmZlNzEzNDllNjQ3YjlhMTc2YTQxZjQ5N2MzYjQxYjBkMzVhNTk1Njc2NDg0ODM0NzJiOTA5MGRjYjkifQ%3D%3D; expires=Mon, 16-Mar-2026 16:22:10 GMT; Max-Age=7200; path=/; httponly\r\ncontent-encoding: gzip\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=nVoiXOOJpSMHyEWdFs8qSgHZD89Ec39PHxkalPiNq8oiyZSB%2BRm8dWhm4%2BGFkB33UtmOqXQ7E1CSHGwLmefkpjfcrV5%2F8Vt%2FaeLS4WMpnzSsIOvKzws%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dd4688f889cb7b2-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":474,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"bba53f5ef68337f585db2ea697015319","sha1":"9d9810f69dd4e9defacc6adae74790652e3a1f3c","sha256":"7521eaaa451aa998a566cc20040a43b7730146249a27c9337578a496516716e2","sha512":"2597b15bbb253a5842d13fdad71f086c2566ef7c362ed0b75aa3847e09db8c6a7d816ffbc6e65c7650b869f1a40602b8eecb0c65651651e17624d9b17cbc4aa1","ssdeep":"","tlshash":"b3f055d270fea6a151770090bcda7603b09f205e8cc4ffa3dbb0092c91cac5a2a0f807","first_seen":"2026-03-16T14:22:36.331209Z","last_seen":"2026-03-16T14:52:09.846003Z","times_seen":2,"resource_available":false,"data":null}},"time_used":444,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":444,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.drwinxglobaloos.cc/api/company/getCompanyStatus?t=1773670929361","fqdn":"api.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://pc.drwinxglobaloos.cc/","date":"2026-03-16T14:22:09.846Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"drwinxglobaloos.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 23 Jan 2026 05:39:26 GMT","end":"Thu, 23 Apr 2026 06:37:05 GMT"},"fingerprint":{"sha1":"51:51:C2:35:06:A3:59:9C:C2:DC:F9:D7:B0:11:AB:F5:82:DB:E5:96","sha256":"82:1C:C6:7F:20:65:68:86:BC:B7:E7:55:28:9E:58:C0:5B:0B:5B:C8:A8:90:E8:C5:EB:7C:F0:C2:10:5B:29:78"}}},"request":{"raw":"GET /api/company/getCompanyStatus?t=1773670929361 HTTP/1.1\r\nHost: api.drwinxglobaloos.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlang: en\r\nauthorization: \r\nOrigin: https://pc.drwinxglobaloos.cc\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pc.drwinxglobaloos.cc/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 16 Mar 2026 14:22:10 GMT\r\ncontent-type: application/json\r\nserver: cloudflare\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: PUT,POST,GET,DELETE,OPTIONS\r\naccess-control-allow-headers: x-requested-with,Authorization,Content-Type,Origin,X-Auth-Token,lang\r\naccess-control-max-age: 86400\r\naccess-control-allow-credentials: true\r\ncontent-security-policy: script-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline';\r\ncache-control: no-cache, private\r\nset-cookie: drwinx_session=eyJpdiI6Ik9DbzJKRDNHSm5zd0ZPUUpnVnBmdUE9PSIsInZhbHVlIjoiVWtKYWNaQWFnaDhTd1dTbzFXdFlaWXZneGRock1QeEZDeG5BWVJONklMNDBCTXViS092ZmhwUkhza0NNWitNMjZZVWFicHdBXC9ldTNuN0RKT1hoKzRpelM1bjZnaW5ZVjJxeko2cGcxQzU2UUdNNkx2Rms2N1VBZVVzV2FESEJhIiwibWFjIjoiOWU2ZWYyZWI2MDRhZGYwOWNmMThhNjA1NTQ4NjIxMGVlOGFlMzhlMDU3Yjg1NjgzNWY5ZWYzYTYwODZkMGIzNyJ9; expires=Mon, 16-Mar-2026 16:22:10 GMT; Max-Age=7200; path=/; httponly\r\ncontent-encoding: gzip\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=do9EoY%2BJMqcNLfCl2IYI%2BrVf8%2F3uVYm5P6LCSev4bMlMGUKaAhZwmVl9XMo9FhByJjoiGa8QzQ2bTYm2cBlraalVlI5OWawIa%2FwPCSS5YpNWbJeX1bQ%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dd4688f88b5b7b2-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":118,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"41f6670ffc5dfd6fc800df295acbc640","sha1":"6f992b34eef447fdd3509f70d6ac79fe9dee35aa","sha256":"13d0020a75cca22bfae5d21e6d3deb6f09ada4cae580840339cf15a1891c6e42","sha512":"4a28ee81fdf98c7ff0cdc985634906c12f2bfd00f8fdf2714d08b8c0518e62779e636d86869fc00d156552477590c738fa735b12b54296cc5e5d41deb56594ac","ssdeep":"","tlshash":"bbb09b95546d5147656311c4544451138375f1538941db85475da97444dc0ea6055527","first_seen":"2025-06-01T05:36:04.766654Z","last_seen":"2026-06-11T20:24:30.117022Z","times_seen":123,"resource_available":false,"data":null}},"time_used":447,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":447,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pc.drwinxglobaloos.cc/assets/file/vn1ebb558a.png","fqdn":"pc.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://pc.drwinxglobaloos.cc/","date":"2026-03-16T14:22:10.220Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"drwinxglobaloos.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 23 Jan 2026 05:39:26 GMT","end":"Thu, 23 Apr 2026 06:37:05 GMT"},"fingerprint":{"sha1":"51:51:C2:35:06:A3:59:9C:C2:DC:F9:D7:B0:11:AB:F5:82:DB:E5:96","sha256":"82:1C:C6:7F:20:65:68:86:BC:B7:E7:55:28:9E:58:C0:5B:0B:5B:C8:A8:90:E8:C5:EB:7C:F0:C2:10:5B:29:78"}}},"request":{"raw":"GET /assets/file/vn1ebb558a.png HTTP/1.1\r\nHost: pc.drwinxglobaloos.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pc.drwinxglobaloos.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 16 Mar 2026 14:22:10 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Thu, 19 Jun 2025 17:55:44 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"68544f20-19af\"\r\nexpires: Wed, 15 Apr 2026 14:22:10 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=hPyQDmTEty1ma%2BcMAqSNSjONZLzN5nswfAy4BiVoRQKnb0cN3iFsqyZ9hNpoPFfMTXf4gwACMh4Fg7OBJnPD%2B5z7ULO2xnOKTS3ARQkZK0QIlQfzkQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dd46891ef6eb7b2-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":6575,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 129 x 86, 8-bit/color RGBA, non-interlaced","md5":"f8ad79b8e3e7e4985afa5ac18c05a511","sha1":"fd97fa80ffc00ce5e94f239649bd442680ffc219","sha256":"1ebb558ad547d5408153a2ff59021b6de1d65c42dd3253de9124ec3700cee40c","sha512":"f7f79e53722aa1669d0511f318cf2b0bf75eecdf806a3d22a87058f0a99caec7d05c0e197f5d6d21129bef8debd23378c707633970fda7ac6a85943a1f7b79b1","ssdeep":"192:JDV9Cy7Wec2PyJcmpwAQuP4XDBlRBjDbVAumhew:hV9FWz2PyNm8PkpBvZ9mhJ","tlshash":"45d18df7bb8049a1dc6dac737104f3d01567e98fa17890ed87a8408ce22125c8b20ba3","first_seen":"2023-05-06T18:37:16Z","last_seen":"2026-06-11T20:24:30.116465Z","times_seen":258,"resource_available":false,"data":null}},"time_used":399,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":399,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"pc.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"pc.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pc.drwinxglobaloos.cc/assets/file/ar7c042e25.png","fqdn":"pc.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://pc.drwinxglobaloos.cc/","date":"2026-03-16T14:22:10.230Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"drwinxglobaloos.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 23 Jan 2026 05:39:26 GMT","end":"Thu, 23 Apr 2026 06:37:05 GMT"},"fingerprint":{"sha1":"51:51:C2:35:06:A3:59:9C:C2:DC:F9:D7:B0:11:AB:F5:82:DB:E5:96","sha256":"82:1C:C6:7F:20:65:68:86:BC:B7:E7:55:28:9E:58:C0:5B:0B:5B:C8:A8:90:E8:C5:EB:7C:F0:C2:10:5B:29:78"}}},"request":{"raw":"GET /assets/file/ar7c042e25.png HTTP/1.1\r\nHost: pc.drwinxglobaloos.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pc.drwinxglobaloos.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 16 Mar 2026 14:22:10 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Thu, 19 Jun 2025 17:55:44 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"68544f20-1430\"\r\nexpires: Wed, 15 Apr 2026 14:22:10 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=7GKMF0S%2FE9gb4jljhDSVoJouV71hnIEjoeNyge11Ibcd8Lcdl%2FU8uQOVDgVA38vd9CFe8cEYZg255zFyOGk1M0B6OSVGTr1xGZiL0eljY9bIo9kCRA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dd46891ff85b7b2-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5168,"size_decoded":0,"mime_type":"image/png","magic":"JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=8, orientation=upper-left, xresolution=110, yresolution=118, resolutionunit=2, software=ACDSee Ultimate 10, datetime=2020:09:16 19:35:15], baseline, precision 8, 626x313, components 3","md5":"97fc54e98bbebb9ca3a2251b69850f8d","sha1":"5c8030bdf9ea111df689e8fee05f69fb32f85ed9","sha256":"7c042e25b586e816050a329d1e603db9213736a1ba744a4776989a5d28848b7a","sha512":"aeacf2ac57581175a29fffac20070020633a915327c0fd8b4622656b6f69545946ef6c3b21d0bfd67d71850a67c7dd301f5ea5fd0a5b035f31fb43145dc1a44e","ssdeep":"96:H3qotXBoEwwVOIIIXd6xziiiiiiiiiiiiiiiiiiiiiiiiiiiiz:HbYSOIIIXwxziiiiiiiiiiiiiiiiiiia","tlshash":"7ab124bc1f1e083ec5293a3850639579696b4fdb9b320c5c9e4d6608b1c31f69ac5963","first_seen":"2023-11-27T03:55:53Z","last_seen":"2026-06-11T20:24:30.143716Z","times_seen":198,"resource_available":false,"data":null}},"time_used":391,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":391,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"pc.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"pc.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.drwinxglobaloos.cc/v1/api/forex/trade_list?t=1773670929368","fqdn":"api.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://pc.drwinxglobaloos.cc/","date":"2026-03-16T14:22:09.757Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"drwinxglobaloos.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 23 Jan 2026 05:39:26 GMT","end":"Thu, 23 Apr 2026 06:37:05 GMT"},"fingerprint":{"sha1":"51:51:C2:35:06:A3:59:9C:C2:DC:F9:D7:B0:11:AB:F5:82:DB:E5:96","sha256":"82:1C:C6:7F:20:65:68:86:BC:B7:E7:55:28:9E:58:C0:5B:0B:5B:C8:A8:90:E8:C5:EB:7C:F0:C2:10:5B:29:78"}}},"request":{"raw":"GET /v1/api/forex/trade_list?t=1773670929368 HTTP/1.1\r\nHost: api.drwinxglobaloos.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlang: en\r\nauthorization: \r\nOrigin: https://pc.drwinxglobaloos.cc\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pc.drwinxglobaloos.cc/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 16 Mar 2026 14:22:10 GMT\r\ncontent-type: application/json; charset=utf-8\r\nserver: cloudflare\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: *\r\naccess-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE, UPDATE\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: Content-Length, Access-Control-Allow-Origin, Access-Control-Allow-Headers, Cache-Control, Content-Language, Content-Type\r\ncontent-encoding: gzip\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=BN1nHMuYs9sZ19Rg5w%2BZrNm%2FjmiuCr3S3JAE9%2FksCbAHEtA1EhcX1bHn8DBv0TuaWXShkqsPxkcJA84l5vvfcwAjNQk4sjPkyRM45Dc9vouhFNoSy9s%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dd4688f0f49b7b2-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":55463,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"7a866213b621f96e35f819437988dd22","sha1":"c94b5df80365f32932c03b2cd69f5f043c751ebd","sha256":"2e33d46288fb65dbb8fff93a943c5faf84641d333a420d45bf546f61d6eed193","sha512":"16b56b8df9872603e582bade6a62607946ec079a62df044d67f1c45fb50dd442622f93282b4db258e252e323641ef6755d814c45bf3d3f8c4eda3abf6e1e6ee0","ssdeep":"384:MJP+cwA5BV5HjVsGMP+d9WxdbYcn5ALnz:HJYnJH6v4","tlshash":"5843593796fcc0b5a645379858773f99f98bf1ed0acd2bc0bb8d824480544b2349af96","first_seen":"2026-03-16T14:22:36.335414Z","last_seen":"2026-03-16T14:22:36.335414Z","times_seen":1,"resource_available":false,"data":null}},"time_used":394,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":394,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"wss","addr":"api.drwinxglobaloos.cc/v1/ws","fqdn":"api.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"websocket","requested_by":"https://pc.drwinxglobaloos.cc/","date":"2026-03-16T14:22:09.355Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"drwinxglobaloos.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 23 Jan 2026 05:39:26 GMT","end":"Thu, 23 Apr 2026 06:37:05 GMT"},"fingerprint":{"sha1":"51:51:C2:35:06:A3:59:9C:C2:DC:F9:D7:B0:11:AB:F5:82:DB:E5:96","sha256":"82:1C:C6:7F:20:65:68:86:BC:B7:E7:55:28:9E:58:C0:5B:0B:5B:C8:A8:90:E8:C5:EB:7C:F0:C2:10:5B:29:78"}}},"request":{"raw":"GET /v1/ws HTTP/1.1\r\nHost: api.drwinxglobaloos.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nSec-WebSocket-Version: 13\r\nOrigin: https://pc.drwinxglobaloos.cc\r\nSec-WebSocket-Extensions: permessage-deflate\r\nSec-WebSocket-Key: cyis+WN1NBRcTaUxj/+QBQ==\r\nDNT: 1\r\nConnection: keep-alive, Upgrade\r\nSec-Fetch-Dest: websocket\r\nSec-Fetch-Mode: websocket\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nUpgrade: websocket\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 101 Switching Protocols\r\nDate: Mon, 16 Mar 2026 14:22:09 GMT\r\nConnection: upgrade\r\nUpgrade: websocket\r\nSec-WebSocket-Accept: 4XAV6nA3M4oXtkeoUoTEyuwWviw=\r\ncf-cache-status: DYNAMIC\r\nReport-To: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=ChhJgKgUp6xoy4UcNZVG2bfK1gmwCOA%2B6O8TL5ytI76oi02vzyW9Z3rzFYxl8e5sZ%2FUT%2BhW2aBfZhYGwPBLfVuQ%2BwYQ4RvjbWWaqK%2Bz1F1ZldxsCBS49BrJFwTovQi2YADNeLgszoC2V\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nNEL: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nServer: cloudflare\r\nCF-RAY: 9dd4688cbb78e9c1-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=7729\u0026min_rtt=7602\u0026rtt_var=1795\u0026sent=5\u0026recv=8\u0026lost=0\u0026retrans=0\u0026sent_bytes=3210\u0026recv_bytes=1306\u0026delivery_rate=543747\u0026cwnd=53\u0026unsent_bytes=0\u0026cid=722aacc0d014d84c\u0026ts=418\u0026x=0\"\r\n\r\n","headers":null,"cookies":null,"status_code":"101","status_text":"Switching Protocols","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-13T17:33:37.826371Z","times_seen":16391923,"resource_available":true,"data":null}},"time_used":437,"timings":{"blocked":0,"dns":2,"connect":8,"send":0,"wait":402,"receive":0,"ssl":25},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pc.drwinxglobaloos.cc/assets/chunk/home28a0fc38.js","fqdn":"pc.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://pc.drwinxglobaloos.cc/","date":"2026-03-16T14:22:09.384Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"drwinxglobaloos.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 23 Jan 2026 05:39:26 GMT","end":"Thu, 23 Apr 2026 06:37:05 GMT"},"fingerprint":{"sha1":"51:51:C2:35:06:A3:59:9C:C2:DC:F9:D7:B0:11:AB:F5:82:DB:E5:96","sha256":"82:1C:C6:7F:20:65:68:86:BC:B7:E7:55:28:9E:58:C0:5B:0B:5B:C8:A8:90:E8:C5:EB:7C:F0:C2:10:5B:29:78"}}},"request":{"raw":"GET /assets/chunk/home28a0fc38.js HTTP/1.1\r\nHost: pc.drwinxglobaloos.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://pc.drwinxglobaloos.cc/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 16 Mar 2026 14:22:09 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Thu, 19 Jun 2025 17:55:44 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"68544f20-41f60\"\r\nexpires: Tue, 17 Mar 2026 02:22:09 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=W2Lr2QalixLL336Z4IS2htrWZ%2F604vRYCn8yv01rQi7PgBbCBpXS2vrbTjMfeHD6iQ53alubRhbO2rwAkhfV1GfNj%2ByRRMGOG%2BVU%2Fi0w9XCRxp6I1A%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dd4688caa0fb7b2-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":270176,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"c015cb3e88605b8821603c56ecc40ecd","sha1":"21a4830efe77e4b1b7b44e80d92ce904ef12ecd0","sha256":"53079d1dbd0dd7db5c59d54f3a9a4593196977756f84f03bb5627bbd97362204","sha512":"7f052df1ea7bd3b61dfa7ef13d7b0e28b5eecad2be40b5d28596a76ba376370fe94e645ef1f6a2f87866439db4427384885f91ae55efb20a12bbca186186dc0d","ssdeep":"3072:NNB07wL6LXK5TeBxFYLL4GGrdDYIKD64/2T602OnLq2YNX1OlN6twZAlzpnKgDpy:NNEspL41lNIpy","tlshash":"d6445b41b396d3fde273049e601ab000b2653deef690d9d1f1be8e171a62ce151adf26","first_seen":"2025-11-30T17:21:53.603383Z","last_seen":"2026-03-16T14:52:09.833636Z","times_seen":3,"resource_available":true,"data":null}},"time_used":745,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":380,"receive":365,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"pc.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"pc.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pc.drwinxglobaloos.cc/assets/entry/index69a9bc81.js","fqdn":"pc.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://pc.drwinxglobaloos.cc/","date":"2026-03-16T14:22:07.360Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"drwinxglobaloos.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 23 Jan 2026 05:39:26 GMT","end":"Thu, 23 Apr 2026 06:37:05 GMT"},"fingerprint":{"sha1":"51:51:C2:35:06:A3:59:9C:C2:DC:F9:D7:B0:11:AB:F5:82:DB:E5:96","sha256":"82:1C:C6:7F:20:65:68:86:BC:B7:E7:55:28:9E:58:C0:5B:0B:5B:C8:A8:90:E8:C5:EB:7C:F0:C2:10:5B:29:78"}}},"request":{"raw":"GET /assets/entry/index69a9bc81.js HTTP/1.1\r\nHost: pc.drwinxglobaloos.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pc.drwinxglobaloos.cc/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 16 Mar 2026 14:22:07 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Thu, 19 Jun 2025 17:55:44 GMT\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"68544f20-22202\"\r\nexpires: Tue, 17 Mar 2026 02:22:07 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=3jVuHBpK8lWpwR3lYu53ZC0V%2BSeZK7Gyu8THiaWq3lLz67mMfhCQhEvd6nSaEtykKKWk1M3m%2FljkT2lqyBDNAeHdlt9v%2BxXKyppnI0FI9a5bTNSSgg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dd468800ceeb7b2-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":139778,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (52479), with no line terminators","md5":"4ec7694ef133d33ee0cdaaf0d65f4023","sha1":"09bc6807f29b8b1fb1a28b45c041f9936ffb08a8","sha256":"0a672e53b8aef19e656877366c4dc0613b6d0e413428fb2f307ccba548936ba5","sha512":"31c56aca227cc2bf44a16a08419a7c604f935dfdfeac8ba1ea29af957a36dbf4f8fdd8d0d59d7fdd5da22c7c004622dd49765c3b3f151903f31a5dec1a7149cc","ssdeep":"3072:TKgia3cnbjApf4UfLzO3YXR03LyJG7XAZOfasMOwWfE:TKg4nuvTzO3xteVW8","tlshash":"a4d37e7a118628dc08b2d60af44f3b5858d41cebfb96d8d509fc8a6823f3d199197e3d","first_seen":"2025-11-30T17:21:53.61496Z","last_seen":"2026-03-16T14:52:09.846587Z","times_seen":3,"resource_available":true,"data":null}},"time_used":757,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":389,"receive":368,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"pc.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"pc.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"m.drwinxglobaloos.cc/assets/entry/index4b789c7c.js","fqdn":"m.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://m.drwinxglobaloos.cc/","date":"2026-03-16T14:22:05.636Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"drwinxglobaloos.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 23 Jan 2026 05:39:26 GMT","end":"Thu, 23 Apr 2026 06:37:05 GMT"},"fingerprint":{"sha1":"51:51:C2:35:06:A3:59:9C:C2:DC:F9:D7:B0:11:AB:F5:82:DB:E5:96","sha256":"82:1C:C6:7F:20:65:68:86:BC:B7:E7:55:28:9E:58:C0:5B:0B:5B:C8:A8:90:E8:C5:EB:7C:F0:C2:10:5B:29:78"}}},"request":{"raw":"GET /assets/entry/index4b789c7c.js HTTP/1.1\r\nHost: m.drwinxglobaloos.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.drwinxglobaloos.cc/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 16 Mar 2026 14:22:06 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Thu, 19 Jun 2025 17:57:29 GMT\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"68544f89-4ee8\"\r\nexpires: Tue, 17 Mar 2026 02:22:05 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=U%2FeuTzqV5zWPyeybrWWEP%2FKTFJJBTNudOf1lNDKoRDkNTg7MWpWNa0AQDRfQvI8haDhnSICdgB%2FIL1DzU17p1JTtWUoj7gzGLo1fX4Hso2hGN4C3\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dd468753cdab7b2-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":20200,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (20199)","md5":"01582c00485492fb506b750389d93bdb","sha1":"43077b60f918b0becc425e6d91dab848241dcf84","sha256":"220d43c65bc7c329c2c8aa165ad8ba8a9bfdf81d7dd1c5b13fd55ab4085882c2","sha512":"6e2656053be2273a687d1f1d4a73ba74f143dda50d84a910a42e7918ec14ce7d01a52c441fe89e29c09e6b66146e08f6f101e4cbee0b3339ad0f9660835a5931","ssdeep":"384:hB7HKgnCIOKWbTr9AtTtGgkAdU0gHphvB+Ws:htHKgnCX1XgZ9vm0wppXs","tlshash":"ab92d6f91b3c91fc55c70abebf2541d4370e64bb76b285e462ae9e785583c48e20be40","first_seen":"2026-03-16T14:22:36.340226Z","last_seen":"2026-03-16T14:52:09.84823Z","times_seen":2,"resource_available":true,"data":null}},"time_used":385,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":385,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"m.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"m.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"m.drwinxglobaloos.cc/assets/file/indexd733cddf.css","fqdn":"m.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://m.drwinxglobaloos.cc/","date":"2026-03-16T14:22:05.639Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"drwinxglobaloos.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 23 Jan 2026 05:39:26 GMT","end":"Thu, 23 Apr 2026 06:37:05 GMT"},"fingerprint":{"sha1":"51:51:C2:35:06:A3:59:9C:C2:DC:F9:D7:B0:11:AB:F5:82:DB:E5:96","sha256":"82:1C:C6:7F:20:65:68:86:BC:B7:E7:55:28:9E:58:C0:5B:0B:5B:C8:A8:90:E8:C5:EB:7C:F0:C2:10:5B:29:78"}}},"request":{"raw":"GET /assets/file/indexd733cddf.css HTTP/1.1\r\nHost: m.drwinxglobaloos.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.drwinxglobaloos.cc/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 16 Mar 2026 14:22:06 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\nlast-modified: Thu, 19 Jun 2025 17:57:29 GMT\r\npriority: u=2,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"68544f89-4825\"\r\nexpires: Tue, 17 Mar 2026 02:22:05 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=eZgOFf5sX8FZfpC5DZ5Y%2FZ5fSAkC4iZSi3kceYSKazwn64oNeHTJEC5LWjsqEl82ru%2BseWYNeDPweJWi%2BtvffUmwCc9Ybwxdz%2BqBoYs%2Bm6kCevXm\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dd468753ce3b7b2-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":18469,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (18468)","md5":"d784775b255e3170310100fcf508eea1","sha1":"b70f8ed52250629c4db26b5ba823f40536fa7704","sha256":"d733cddf65dd69243c4badf6486073d01112496d19a0dd9302a3f9df34e6f825","sha512":"be97b40b58686c24a58fa36dfc79ccea2f576f99f4dd7fb4fed7953b1e2641ce1444ea8c308e663d147dd47e842dccac489ca52c1b30ef123085686cc29339e0","ssdeep":"192:O9JyW9Jyyxwy1vGfgsfPsfsgsfksfrZGx2GxB+KbNuJTT84GmgcH:kwW6QcT84PJ","tlshash":"708209e7f7cc20296c1681eae595bb7cfc3f95c1ab2a9de6e501773153902eb989010c","first_seen":"2026-03-16T14:22:36.341682Z","last_seen":"2026-03-16T14:52:09.844272Z","times_seen":2,"resource_available":false,"data":null}},"time_used":374,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":374,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"m.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"m.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"m.drwinxglobaloos.cc/assets/chunk/ui8383a7e6.js","fqdn":"m.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://m.drwinxglobaloos.cc/","date":"2026-03-16T14:22:06.034Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"drwinxglobaloos.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 23 Jan 2026 05:39:26 GMT","end":"Thu, 23 Apr 2026 06:37:05 GMT"},"fingerprint":{"sha1":"51:51:C2:35:06:A3:59:9C:C2:DC:F9:D7:B0:11:AB:F5:82:DB:E5:96","sha256":"82:1C:C6:7F:20:65:68:86:BC:B7:E7:55:28:9E:58:C0:5B:0B:5B:C8:A8:90:E8:C5:EB:7C:F0:C2:10:5B:29:78"}}},"request":{"raw":"GET /assets/chunk/ui8383a7e6.js HTTP/1.1\r\nHost: m.drwinxglobaloos.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.drwinxglobaloos.cc/assets/entry/index4b789c7c.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 16 Mar 2026 14:22:06 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Thu, 19 Jun 2025 17:57:29 GMT\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"68544f89-1946e\"\r\nexpires: Tue, 17 Mar 2026 02:22:06 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=5T6thM6xdsnZnDS5Az%2Bg8PrCwMEHFpHs%2FH6qC2uVk496r3SDNnr5A1EKAvlVaOsi3%2BTRr9dcu5XnobPeaJVx4%2BwRCMGjgsrfb8UgYlLwzoN%2Fz0Jo\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dd46877bac8b7b2-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":103534,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65248), with no line terminators","md5":"9e9901171d6a226bd746987f9a7aefa4","sha1":"019eeed0c7f8e3cfa67f7743c0094005e2f95897","sha256":"adb310347e36553027f87db9d1ae4b56626cc4f8751102b29dcd7dfff1cd952b","sha512":"fd15ef37835b78f28ad8bd87e4ab5d371c0bc091781c4f72c4d0893a72240a583caf19477f37f7f8b7d1baff779a3986792a70f55af8ede18f417d05549ec9ff","ssdeep":"3072:mC4PhDijJ5tAkChtdqdh0dzJ/FQv5k2J4Pf07pLQvv6tBH+ZzY1AXHYCX2i1zNw:mC4PhDFkChtdq6FQv5E0iytBH+Zzg+Yh","tlshash":"4da34c91b586b93c877b94c5509a1500b62c1f89f409c8e0f0be9d4a27eedd8f1b7f29","first_seen":"2026-03-16T14:22:36.342941Z","last_seen":"2026-03-16T14:52:09.848791Z","times_seen":2,"resource_available":true,"data":null}},"time_used":568,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":384,"receive":184,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"m.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"m.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"m.drwinxglobaloos.cc/assets/chunk/requeste71a8939.js","fqdn":"m.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://m.drwinxglobaloos.cc/","date":"2026-03-16T14:22:06.040Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"drwinxglobaloos.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 23 Jan 2026 05:39:26 GMT","end":"Thu, 23 Apr 2026 06:37:05 GMT"},"fingerprint":{"sha1":"51:51:C2:35:06:A3:59:9C:C2:DC:F9:D7:B0:11:AB:F5:82:DB:E5:96","sha256":"82:1C:C6:7F:20:65:68:86:BC:B7:E7:55:28:9E:58:C0:5B:0B:5B:C8:A8:90:E8:C5:EB:7C:F0:C2:10:5B:29:78"}}},"request":{"raw":"GET /assets/chunk/requeste71a8939.js HTTP/1.1\r\nHost: m.drwinxglobaloos.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.drwinxglobaloos.cc/assets/entry/index4b789c7c.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 16 Mar 2026 14:22:06 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Thu, 19 Jun 2025 17:57:29 GMT\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"68544f89-871d\"\r\nexpires: Tue, 17 Mar 2026 02:22:06 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=J5CIkd6Bpw9%2B1cPwzuIi3zOGXPTfW3tZO6eF8VTpxZkRaeIIH7LkVV7mAKY9HnP%2Ftn6HMc3YEAhXBjI%2BqDvDoXJJ2Bx6i%2FMJZhMSBxUuxzSck6nV\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dd46877cae5b7b2-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":34589,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (34588)","md5":"82745a9796daf73f35a18c8b9fb1384e","sha1":"d2eaa6336127edd3bcfb6401211856a2bac09a3a","sha256":"79136fcc51bc099ae77f9ee8c48e853d95952dcfa62693ea7085fc2db09212f0","sha512":"0240962154393fc296ce75d6c84f00e7ae4d63cbdb310d680654e8ab6fd2dfafba9d4141f449331e4ed5a9a5498502bc3ef19e1810a0894de5a736e8647bf518","ssdeep":"768:sydgzqmO9MQZLmAmvPeaIgN0qK9dvM5w4jcgw+TaSGJBtpiFbzFvephCdl9lm/jn:+IbSknBo9vn+66xTjno6q6","tlshash":"4cf229d57691b06193ea24f1407b0806f33a9526744e84e4f168aceb2cb640e97f7fbd","first_seen":"2025-08-03T16:13:07.013756Z","last_seen":"2026-03-16T14:52:09.852647Z","times_seen":4,"resource_available":true,"data":null}},"time_used":577,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":396,"receive":181,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"m.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"m.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.drwinxglobaloos.cc/api/default/setting?key=is_show_mobile\u0026t=1773670930355","fqdn":"api.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://pc.drwinxglobaloos.cc/","date":"2026-03-16T14:22:10.995Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"drwinxglobaloos.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 23 Jan 2026 05:39:26 GMT","end":"Thu, 23 Apr 2026 06:37:05 GMT"},"fingerprint":{"sha1":"51:51:C2:35:06:A3:59:9C:C2:DC:F9:D7:B0:11:AB:F5:82:DB:E5:96","sha256":"82:1C:C6:7F:20:65:68:86:BC:B7:E7:55:28:9E:58:C0:5B:0B:5B:C8:A8:90:E8:C5:EB:7C:F0:C2:10:5B:29:78"}}},"request":{"raw":"GET /api/default/setting?key=is_show_mobile\u0026t=1773670930355 HTTP/1.1\r\nHost: api.drwinxglobaloos.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlang: en\r\nauthorization: \r\nOrigin: https://pc.drwinxglobaloos.cc\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pc.drwinxglobaloos.cc/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 16 Mar 2026 14:22:11 GMT\r\ncontent-type: application/json\r\nserver: cloudflare\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: PUT,POST,GET,DELETE,OPTIONS\r\naccess-control-allow-headers: x-requested-with,Authorization,Content-Type,Origin,X-Auth-Token,lang\r\naccess-control-max-age: 86400\r\naccess-control-allow-credentials: true\r\ncontent-security-policy: script-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline';\r\ncache-control: no-cache, private\r\nset-cookie: drwinx_session=eyJpdiI6InU0XC9tek5cL05RQjVJYTkxa01ZQUlSQT09IiwidmFsdWUiOiJIS0s1N2d3VitUYUNnVjFGVGU0TStMOGdUSVVsWjZ0SUtVN1NpcmdZeTJJRFRIcWw5NTd1eXlZZittdHFcLzg1aXNHXC9ZSnp1ZVJvcjhCMEptVHdWaDh5cllreFhJZ0RaT1VuNURFN1lvUmJqTzN6cjlWZmRDNVJSN2VVQUE1MDhSIiwibWFjIjoiNDUxNzdjYzI0ZmJjNzNmNzZjM2RlNmVkOWUyYzZhY2I4MzZkZGFlMzIxOGVjM2Y4MjIwZjBlMDEwZGQ4N2ViZiJ9; expires=Mon, 16-Mar-2026 16:22:11 GMT; Max-Age=7200; path=/; httponly\r\ncontent-encoding: gzip\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=niLagQ6YwoJX8bzA5USOv6%2BQv5q6cbLVwz97nEBWYN9Aef3WdZkYLhuBE6fzcIXwFb0HCRFRPec3hLU1UYxcmF%2BVy4r5YT6O1FE4oSt8STb5lt%2B6VQw%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dd468969b36b7b2-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":48,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"d74deccc0fb757d23b74f81f4ee7485d","sha1":"d7028902a64072c909c3b04ec6737d1290ed004f","sha256":"67978f037237e2dcc09819b32dedc6f8ae340e171613d288d3088206163b8971","sha512":"0f37f9dde3b9094ae72c37a7127ccadf1225f96bcc2c9a9bad0b62646d2a343a8817e482bd0ede7920e303989bc4479017693798822be93ffdbb04b9407e74e1","ssdeep":"","tlshash":"2c900282241b00828606104894088f09115471821400432a5d8e91218e5d1952142470","first_seen":"2025-06-01T05:36:04.735562Z","last_seen":"2026-06-11T20:24:30.13901Z","times_seen":139,"resource_available":false,"data":null}},"time_used":259,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":259,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.drwinxglobaloos.cc/assets/chunk/router42d99c49.js","fqdn":"m.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://m.drwinxglobaloos.cc/","date":"2026-03-16T14:22:06.037Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"drwinxglobaloos.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 23 Jan 2026 05:39:26 GMT","end":"Thu, 23 Apr 2026 06:37:05 GMT"},"fingerprint":{"sha1":"51:51:C2:35:06:A3:59:9C:C2:DC:F9:D7:B0:11:AB:F5:82:DB:E5:96","sha256":"82:1C:C6:7F:20:65:68:86:BC:B7:E7:55:28:9E:58:C0:5B:0B:5B:C8:A8:90:E8:C5:EB:7C:F0:C2:10:5B:29:78"}}},"request":{"raw":"GET /assets/chunk/router42d99c49.js HTTP/1.1\r\nHost: m.drwinxglobaloos.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.drwinxglobaloos.cc/assets/entry/index4b789c7c.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 16 Mar 2026 14:22:06 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Thu, 19 Jun 2025 17:57:29 GMT\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"68544f89-5b6d\"\r\nexpires: Tue, 17 Mar 2026 02:22:06 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=VyDK42%2BqHcMRxBAlCxrmjMhO9EuZ9OzKgTJYMao6plX9S8efrT4Oiiz2JaYRrQe%2B9Ag%2B%2Flp%2FFmuZ%2BGw0xEl98kNDE%2FR5480gR7KsZAzv%2F9eBqqKI\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dd46877bad8b7b2-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":23405,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (23204)","md5":"9d720e8e025e714798b3a723a4cf8a8a","sha1":"46e04dd6bc696ebd9080f184333e58897c938305","sha256":"eb2644c5050c3c53ceceeaed549f79e94e8f846a0d6ffc2b76068f15ea849b66","sha512":"0f2d62f7837274ad565556cbfe37c8c28c38f91dc0de235639a7826524797ffdd267ec192e9222988269a533c0b1378f6d0cd0a8cd46f500a8bd2650896f7f0e","ssdeep":"384:wBVP783clkPXveuCh8L0M/kIX5HJXcnNFViuk7KPjsUxfOg2d9RN5kgwSNIONOrn:MP1l2X1Ch8L3/BX5HJsNFVm7KLsUxfOy","tlshash":"92b2f8e932c2b025a7fa1ae2507e2115f23649c6384e84d1f25c58d33c37d99d2bbf69","first_seen":"2025-08-03T16:13:06.987334Z","last_seen":"2026-03-16T14:52:09.852073Z","times_seen":3,"resource_available":true,"data":null}},"time_used":389,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":389,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"m.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"m.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pc.drwinxglobaloos.cc/assets/file/index95de526e.css","fqdn":"pc.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://pc.drwinxglobaloos.cc/","date":"2026-03-16T14:22:07.363Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"drwinxglobaloos.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 23 Jan 2026 05:39:26 GMT","end":"Thu, 23 Apr 2026 06:37:05 GMT"},"fingerprint":{"sha1":"51:51:C2:35:06:A3:59:9C:C2:DC:F9:D7:B0:11:AB:F5:82:DB:E5:96","sha256":"82:1C:C6:7F:20:65:68:86:BC:B7:E7:55:28:9E:58:C0:5B:0B:5B:C8:A8:90:E8:C5:EB:7C:F0:C2:10:5B:29:78"}}},"request":{"raw":"GET /assets/file/index95de526e.css HTTP/1.1\r\nHost: pc.drwinxglobaloos.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pc.drwinxglobaloos.cc/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 16 Mar 2026 14:22:07 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\nlast-modified: Thu, 19 Jun 2025 17:55:44 GMT\r\npriority: u=2,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"68544f20-c5e6\"\r\nexpires: Tue, 17 Mar 2026 02:22:07 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=FsBFSa%2FR8Qsi70HCwUMR3y6sQrL2GoT9Ftp%2F9Oye4R5H2nwRVKIlAUfh8xfIp6fcFAQ3mHGuIGVOl%2BP%2FugWnJ6plt34ODFmiPtvhq0w3JqAGeyyAyg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dd468800cf4b7b2-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":50662,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (50653)","md5":"d1bab2b491b70e68efdc77bd4fe86ac7","sha1":"43108ce95d98055e5b92f82b97f26ab5f4cf2db2","sha256":"95de526e3471ac18d21486f071a8643d1c6ab6522c86bca8e231a91a1fe26dd6","sha512":"cd9ac1d5cbcc275714545064bd8f29aa09753ad615fc197d1a3e63f3565c60f21da045a664548b49afe34e2515d13575a1e7a4201f0dd2056cac7be6f178a2b7","ssdeep":"768:VZ84ek6ztMlk6ztM3FM6mkKb/biZym8EG0oLPHzlUf8f7O2+:V6ztM3ztM3F96/biZym8+o/lUf8fY","tlshash":"7433f673f2a51465fd379aa2d091bb7e3d2de0d38f224a9df145b33482c62e70a1254d","first_seen":"2025-11-30T17:21:53.59391Z","last_seen":"2026-03-16T14:52:09.842536Z","times_seen":3,"resource_available":false,"data":null}},"time_used":552,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":376,"receive":176,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"pc.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"pc.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pc.drwinxglobaloos.cc/logo.png","fqdn":"pc.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://pc.drwinxglobaloos.cc/","date":"2026-03-16T14:22:10.349Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"drwinxglobaloos.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 23 Jan 2026 05:39:26 GMT","end":"Thu, 23 Apr 2026 06:37:05 GMT"},"fingerprint":{"sha1":"51:51:C2:35:06:A3:59:9C:C2:DC:F9:D7:B0:11:AB:F5:82:DB:E5:96","sha256":"82:1C:C6:7F:20:65:68:86:BC:B7:E7:55:28:9E:58:C0:5B:0B:5B:C8:A8:90:E8:C5:EB:7C:F0:C2:10:5B:29:78"}}},"request":{"raw":"GET /logo.png HTTP/1.1\r\nHost: pc.drwinxglobaloos.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pc.drwinxglobaloos.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 16 Mar 2026 14:22:10 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Thu, 19 Jun 2025 17:55:34 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"68544f16-f1af\"\r\nexpires: Wed, 15 Apr 2026 14:22:10 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\nage: 0\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=5a%2Ff1GbmVVWeo%2BWaTWrRf2HITukfuhwMTCzjUPeljeWl9ViKyJLuZwwxRDHFuua9jbYUxKdBxaxYKRAjPyJt0TilGteJV7md4CSoq75N3rjI1YxYvQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dd46892b944b7b2-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":61871,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1200 x 900, 8-bit/color RGBA, non-interlaced","md5":"be76f5e4a2d60eae642de4ae6c726002","sha1":"3787b12fde6bdea9b7057eb6e85b818b8240c0ac","sha256":"65fe3972e94d3e4444733e3726797b58d5cd5769462df76d8f5fd9af7a8b5746","sha512":"4121f7d34c6f9037c2eba2375455e2b4d1d1aa749ad6739bf9bf690e59f279932a447e19a05cb933e166165b547fb707631e37ecb4918ae3e659e178659c6f4d","ssdeep":"1536:dLp9pYwqZ4Gkeeqv2cVwT/dvtM56nTpNzok:JN84OH2cVwp656tNV","tlshash":"3f53ae78b4e0d001cc10cdbeb8a98a09b3fbab44bfe4d1b6b5099450fc1676d65973b6","first_seen":"2025-11-30T17:21:53.596671Z","last_seen":"2026-03-16T14:52:09.838046Z","times_seen":3,"resource_available":false,"data":null}},"time_used":569,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":213,"receive":356,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"pc.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"pc.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.drwinxglobaloos.cc/v1/api/forex/getCategories?t=1773670930354","fqdn":"api.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://pc.drwinxglobaloos.cc/","date":"2026-03-16T14:22:10.358Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"drwinxglobaloos.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 23 Jan 2026 05:39:26 GMT","end":"Thu, 23 Apr 2026 06:37:05 GMT"},"fingerprint":{"sha1":"51:51:C2:35:06:A3:59:9C:C2:DC:F9:D7:B0:11:AB:F5:82:DB:E5:96","sha256":"82:1C:C6:7F:20:65:68:86:BC:B7:E7:55:28:9E:58:C0:5B:0B:5B:C8:A8:90:E8:C5:EB:7C:F0:C2:10:5B:29:78"}}},"request":{"raw":"OPTIONS /v1/api/forex/getCategories?t=1773670930354 HTTP/1.1\r\nHost: api.drwinxglobaloos.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: authorization,lang\r\nReferer: https://pc.drwinxglobaloos.cc/\r\nOrigin: https://pc.drwinxglobaloos.cc\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/3 204 No Content\r\ndate: Mon, 16 Mar 2026 14:22:10 GMT\r\nserver: cloudflare\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: *\r\naccess-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE, UPDATE\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: Content-Length, Access-Control-Allow-Origin, Access-Control-Allow-Headers, Cache-Control, Content-Language, Content-Type\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=wa2jMmXQOv%2FwmaEErdrx%2B3CcBPcG8vHo6QmJD4dLdzHupEIUKEE%2Blx%2BWMCEZIeRwG4c1U3HUTbGd%2FRKRpNpcs97VybgaNu2cAJz1VmSKyT38QUm3B%2Bo%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\ncf-ray: 9dd46892c96db7b2-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-13T17:33:37.826371Z","times_seen":16391923,"resource_available":true,"data":null}},"time_used":191,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":191,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.drwinxglobaloos.cc/assets/chunk/i18n00ef8031.js","fqdn":"m.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://m.drwinxglobaloos.cc/","date":"2026-03-16T14:22:06.037Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"drwinxglobaloos.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 23 Jan 2026 05:39:26 GMT","end":"Thu, 23 Apr 2026 06:37:05 GMT"},"fingerprint":{"sha1":"51:51:C2:35:06:A3:59:9C:C2:DC:F9:D7:B0:11:AB:F5:82:DB:E5:96","sha256":"82:1C:C6:7F:20:65:68:86:BC:B7:E7:55:28:9E:58:C0:5B:0B:5B:C8:A8:90:E8:C5:EB:7C:F0:C2:10:5B:29:78"}}},"request":{"raw":"GET /assets/chunk/i18n00ef8031.js HTTP/1.1\r\nHost: m.drwinxglobaloos.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.drwinxglobaloos.cc/assets/entry/index4b789c7c.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 16 Mar 2026 14:22:06 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Thu, 19 Jun 2025 17:57:29 GMT\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"68544f89-7c6e\"\r\nexpires: Tue, 17 Mar 2026 02:22:06 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=uoRd%2B98WuW3HPo1ZYP6HdPEkYz9dI3xf9ZaRhZ%2BgFyy3G2hNiphAQ5qUKtvSZleNOn%2BPs3oZJ1ia0J7lFB6jNuNwUw%2BF2jP%2BPELS4sPkNuSWPDRF\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dd46877bad5b7b2-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":31854,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, Unicode text, UTF-8 text, with very long lines (31679)","md5":"5ba6824e2742fdd25d8e232cdf284316","sha1":"71069958de442da241a72a6aaaeb3ed47e810450","sha256":"8afdd08100262e8a3e40813e994423831d1e640f95bb362ec0f64d319ab217ae","sha512":"5dacd161e64884170a3acf151a0cdaa591801d6471a2f2888c6cdc24a06f73ba8b060833c80ca7db67f9e74d97f03a8245c4c8b1cb69780fcbc7415507cb1a25","ssdeep":"768:ZPatiWKGy3xs/jZIaGhqGkIAyVhRWIohYpWihWOGdDGAlEmCmBCb+4JqiB/2YVZV:QELsFIHhIIqlj4Rv","tlshash":"09e2c7c671e6b0020b3582d671b311139f2d075d385ee9d8f8a9e7873a17c4e43aaf69","first_seen":"2025-08-03T16:13:07.025215Z","last_seen":"2026-03-16T14:52:09.850517Z","times_seen":3,"resource_available":true,"data":null}},"time_used":397,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":395,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"m.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"m.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pc.drwinxglobaloos.cc/assets/file/tra980693d.png","fqdn":"pc.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://pc.drwinxglobaloos.cc/","date":"2026-03-16T14:22:10.231Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"drwinxglobaloos.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 23 Jan 2026 05:39:26 GMT","end":"Thu, 23 Apr 2026 06:37:05 GMT"},"fingerprint":{"sha1":"51:51:C2:35:06:A3:59:9C:C2:DC:F9:D7:B0:11:AB:F5:82:DB:E5:96","sha256":"82:1C:C6:7F:20:65:68:86:BC:B7:E7:55:28:9E:58:C0:5B:0B:5B:C8:A8:90:E8:C5:EB:7C:F0:C2:10:5B:29:78"}}},"request":{"raw":"GET /assets/file/tra980693d.png HTTP/1.1\r\nHost: pc.drwinxglobaloos.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pc.drwinxglobaloos.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 16 Mar 2026 14:22:10 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Thu, 19 Jun 2025 17:55:44 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"68544f20-a5a2\"\r\nexpires: Wed, 15 Apr 2026 14:22:10 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=0D5oFgc7jSk7gE1BVgxJeVZb5PG8d%2B%2FS1cVCUXgVwVaj10fG7qZ8izJDDEG2DGN08sgwOeA0%2BEZpdtn%2F%2Fo4uN5ekN90%2ByaTgBTy2IsHIFUQxFB1FnA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dd46891ff89b7b2-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":42402,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1458 x 972, 8-bit/color RGBA, non-interlaced","md5":"ea9a979dafd4239b8688f64510dd26e9","sha1":"178dafa36af6b166800e22895b27265223a9e1f8","sha256":"a980693d226cb177662d6d1a9f3dbad754d3d13fc1aa042dc5d6eb31c6bb1c3a","sha512":"fc85e2f963c8cc6a81099d2bbf29103323d5e21fd3e7123f06c745af070a9611621111b9a376625a7bb84d3d0447578aaa90b74d1ccbd9e6ce71212bcb2269ed","ssdeep":"768:u7cqCtyQKjwJVuqpVtTrUQW0anKcn/mpt391+XxrQdU1F:u7cqCtyQK8sqpVtTkPnJn/mvaGdSF","tlshash":"ff139e1f873e5185f782107f6c372b18813effd86a46770f854da42e2e293ce52a6168","first_seen":"2023-11-27T03:55:54Z","last_seen":"2026-06-11T20:24:30.135387Z","times_seen":212,"resource_available":false,"data":null}},"time_used":560,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":390,"receive":170,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"pc.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"pc.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"m.drwinxglobaloos.cc/assets/file/viewsc8e63083.css","fqdn":"m.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://m.drwinxglobaloos.cc/","date":"2026-03-16T14:22:05.638Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"drwinxglobaloos.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 23 Jan 2026 05:39:26 GMT","end":"Thu, 23 Apr 2026 06:37:05 GMT"},"fingerprint":{"sha1":"51:51:C2:35:06:A3:59:9C:C2:DC:F9:D7:B0:11:AB:F5:82:DB:E5:96","sha256":"82:1C:C6:7F:20:65:68:86:BC:B7:E7:55:28:9E:58:C0:5B:0B:5B:C8:A8:90:E8:C5:EB:7C:F0:C2:10:5B:29:78"}}},"request":{"raw":"GET /assets/file/viewsc8e63083.css HTTP/1.1\r\nHost: m.drwinxglobaloos.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.drwinxglobaloos.cc/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 16 Mar 2026 14:22:06 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\nlast-modified: Thu, 19 Jun 2025 17:57:29 GMT\r\npriority: u=2,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"68544f89-f11\"\r\nexpires: Tue, 17 Mar 2026 02:22:05 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=NncmkwwP83lexf97g0Thc3%2BsfgPj%2Fpmk5Cx6jLJtuYJmQu1QDsYGNXdwq9pxozz5ptdZEDyHUuOZjqBsquSvFcDCekFWLKaL058CGVGJ3R4lIQ7q\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dd468753ce0b7b2-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3857,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (3856)","md5":"3563d72cffe78f57adde29707d3c5979","sha1":"064bce04f5b83b3bd5081ef3101d5c21f9d7c20b","sha256":"c8e6308328399961d5f0a81d18f68edf7272eb62488d4a348e10fc8dbf4a6220","sha512":"e32f82e5ed1e9ad9f0a9bb2c8759f45fda6db5b8e5b883dada02a03c445421fc61f7a7eca2543f650a010fbddc42ed50fccb15898dd6e41d69b0d067dc730d85","ssdeep":"","tlshash":"92817572ab1a503ca426e71bf8d0f9cc555ed112f3824d66f72438734ac77e625b110d","first_seen":"2026-03-10T20:20:46.41131Z","last_seen":"2026-04-21T09:31:00.584935Z","times_seen":10,"resource_available":false,"data":null}},"time_used":376,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":376,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"m.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"m.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pc.drwinxglobaloos.cc/assets/file/pt2d69992c.png","fqdn":"pc.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://pc.drwinxglobaloos.cc/","date":"2026-03-16T14:22:10.228Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"drwinxglobaloos.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 23 Jan 2026 05:39:26 GMT","end":"Thu, 23 Apr 2026 06:37:05 GMT"},"fingerprint":{"sha1":"51:51:C2:35:06:A3:59:9C:C2:DC:F9:D7:B0:11:AB:F5:82:DB:E5:96","sha256":"82:1C:C6:7F:20:65:68:86:BC:B7:E7:55:28:9E:58:C0:5B:0B:5B:C8:A8:90:E8:C5:EB:7C:F0:C2:10:5B:29:78"}}},"request":{"raw":"GET /assets/file/pt2d69992c.png HTTP/1.1\r\nHost: pc.drwinxglobaloos.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pc.drwinxglobaloos.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 16 Mar 2026 14:22:10 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Thu, 19 Jun 2025 17:55:44 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"68544f20-212c\"\r\nexpires: Wed, 15 Apr 2026 14:22:10 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=l24c4cf360koXvD3D7FnYZSoccYfXoaR46ugajKim2bu%2BPKu7hDFPNni4R1HUAZRXtm9UgDF6V9Zu6y0JiFS%2FTdMnxYyRtBpT6DkXizdp1Ub7t7mYg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dd46891ff80b7b2-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":8492,"size_decoded":0,"mime_type":"image/png","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 500x332, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"87f1fc44bf8f73da7835c810e4877d75","sha1":"eae24266f4a23df02e9e568ddb2012420abbfc14","sha256":"2d69992c9039b18813d29f5ba4625c197cb22c932c082d974c3eaa7282fc5fff","sha512":"0496cb107f73b3c80ac1ea70d6186cb97612ed5df1ae71af3c05dc5917d44de94e3b6cb4365fcd0ba65e0d8fc28f4495ad617f36b0cf19123d0256ad99d02f00","ssdeep":"192:hTA2gbbSzN3ascve56Fk8JNi2sIkxY7u3OMDBdVqaGijzeZexBp:1W9/rOY7O1ZGiPeZePp","tlshash":"2402b0d20b4b8ab9ccd016feb5859da4b44fa7043f2853507a1c56f9dc51534e3ec9c9","first_seen":"2023-11-27T03:55:53Z","last_seen":"2026-06-11T20:24:30.128821Z","times_seen":220,"resource_available":false,"data":null}},"time_used":393,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":393,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"pc.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"pc.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.drwinxglobaloos.cc/v1/api/forex/kline?forex_id=106\u0026period=1min\u0026from=1773640920000\u0026to=1773670920000\u0026t=1773670930752","fqdn":"api.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://pc.drwinxglobaloos.cc/","date":"2026-03-16T14:22:11.012Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"drwinxglobaloos.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 23 Jan 2026 05:39:26 GMT","end":"Thu, 23 Apr 2026 06:37:05 GMT"},"fingerprint":{"sha1":"51:51:C2:35:06:A3:59:9C:C2:DC:F9:D7:B0:11:AB:F5:82:DB:E5:96","sha256":"82:1C:C6:7F:20:65:68:86:BC:B7:E7:55:28:9E:58:C0:5B:0B:5B:C8:A8:90:E8:C5:EB:7C:F0:C2:10:5B:29:78"}}},"request":{"raw":"OPTIONS /v1/api/forex/kline?forex_id=106\u0026period=1min\u0026from=1773640920000\u0026to=1773670920000\u0026t=1773670930752 HTTP/1.1\r\nHost: api.drwinxglobaloos.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: authorization,lang\r\nReferer: https://pc.drwinxglobaloos.cc/\r\nOrigin: https://pc.drwinxglobaloos.cc\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/3 204 No Content\r\ndate: Mon, 16 Mar 2026 14:22:11 GMT\r\nserver: cloudflare\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: *\r\naccess-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE, UPDATE\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: Content-Length, Access-Control-Allow-Origin, Access-Control-Allow-Headers, Cache-Control, Content-Language, Content-Type\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Qr7uB7T1qvIbGPLd5xTkfZKUfjYfs42Q8xxzx1Y6LVv2QllmhSQvhfGkj3PTSqwSTR%2BTvrEl%2BISuuyCs0QKwz1MiKnyp%2B7FdllRixAeD4YpJbRiEQec%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\ncf-ray: 9dd46896dbdeb7b2-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-13T17:33:37.826371Z","times_seen":16391923,"resource_available":true,"data":null}},"time_used":197,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":197,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.drwinxglobaloos.cc/api/user/info?t=1773670929369","fqdn":"api.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://pc.drwinxglobaloos.cc/","date":"2026-03-16T14:22:09.841Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"drwinxglobaloos.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 23 Jan 2026 05:39:26 GMT","end":"Thu, 23 Apr 2026 06:37:05 GMT"},"fingerprint":{"sha1":"51:51:C2:35:06:A3:59:9C:C2:DC:F9:D7:B0:11:AB:F5:82:DB:E5:96","sha256":"82:1C:C6:7F:20:65:68:86:BC:B7:E7:55:28:9E:58:C0:5B:0B:5B:C8:A8:90:E8:C5:EB:7C:F0:C2:10:5B:29:78"}}},"request":{"raw":"GET /api/user/info?t=1773670929369 HTTP/1.1\r\nHost: api.drwinxglobaloos.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlang: en\r\nauthorization: \r\nOrigin: https://pc.drwinxglobaloos.cc\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pc.drwinxglobaloos.cc/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 16 Mar 2026 14:22:10 GMT\r\ncontent-type: application/json\r\nserver: cloudflare\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: PUT,POST,GET,DELETE,OPTIONS\r\naccess-control-allow-headers: x-requested-with,Authorization,Content-Type,Origin,X-Auth-Token,lang\r\naccess-control-max-age: 86400\r\naccess-control-allow-credentials: true\r\ncontent-security-policy: script-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline';\r\ncache-control: no-cache, private\r\nset-cookie: drwinx_session=eyJpdiI6IlhYeUlWcnBXclJLbjdHZ1VUdW9CWXc9PSIsInZhbHVlIjoickJVeklnMDExdkVuWHNPMGRrRVdZRFlrMG9ISXN1d0VPUDJZUDFHVVdTdlFWcWRVa3o0SEtcL0VjeGJMaitHeUVBa3NVN09vallralwvZlluT0ZiT0VWTmFhS3JDQkI0aWVpcGlUVjN5OG1qbzU3Wm54S0E3bVZcL1NVVk5xUTVBajIiLCJtYWMiOiI4N2Y5ZTQ4MjFmNjZmM2RhYTRiNzk2MTkyMDkzMjM0NTJjMDA0NTE0ZGZlNWFiNjg5MWRlODc4OTJmNzA3MjFiIn0%3D; expires=Mon, 16-Mar-2026 16:22:10 GMT; Max-Age=7200; path=/; httponly\r\ncontent-encoding: gzip\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=EBwiDPzj4g%2FWZAXM9iNmSMrmtBTSNWOZKaqLuzpusOEdp9SwGCk%2BIwGdXlJb6DfqDO3wLbpU8kW1kLnhBkVwFmSW1A4xJD%2F7UBEcdCkZXrWYD0xhNzY%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dd4688f88a6b7b2-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":37,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"f7f1766c7a443d23ce403a825e98e969","sha1":"652183edee25a8d330833c6b4e001d636f183aef","sha256":"b88ebc64268dbebbafc19609aa684a323e676b48d8ef97cc8c032721819c1e23","sha512":"8b9f468f8b52e3944be138b4536d0b4719c9beac0351f25797bd9bd90c6e4e4e65a989f163d733f286da2a9d6b4036e6184b3e85a1959a61a4fbb965242a77a4","ssdeep":"","tlshash":"2880044f000c140311070055540c11100f54145001c1d3151d1d053410fdc4c17c1035","first_seen":"2025-06-01T05:36:04.794467Z","last_seen":"2026-06-11T20:24:30.128318Z","times_seen":191,"resource_available":false,"data":null}},"time_used":432,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":432,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pc.drwinxglobaloos.cc/assets/file/kr65c1cb50.png","fqdn":"pc.drwinxglobaloos.cc","domain":"drwinxglobaloos.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://pc.drwinxglobaloos.cc/","date":"2026-03-16T14:22:10.217Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"drwinxglobaloos.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 23 Jan 2026 05:39:26 GMT","end":"Thu, 23 Apr 2026 06:37:05 GMT"},"fingerprint":{"sha1":"51:51:C2:35:06:A3:59:9C:C2:DC:F9:D7:B0:11:AB:F5:82:DB:E5:96","sha256":"82:1C:C6:7F:20:65:68:86:BC:B7:E7:55:28:9E:58:C0:5B:0B:5B:C8:A8:90:E8:C5:EB:7C:F0:C2:10:5B:29:78"}}},"request":{"raw":"GET /assets/file/kr65c1cb50.png HTTP/1.1\r\nHost: pc.drwinxglobaloos.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pc.drwinxglobaloos.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 16 Mar 2026 14:22:10 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Thu, 19 Jun 2025 17:55:44 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"68544f20-3fce\"\r\nexpires: Wed, 15 Apr 2026 14:22:10 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=gZLV7Kqj8J7jtrhR8sefNCqHZa9BEw50%2BxKkPkEvx3MsBnf9dsww6%2FAW1b8T6qS5Snp2a7HoINUBLFVQu%2FgHxNfP9zRIvHr4URDIazQOS3Q1XfjnfA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dd46891ef61b7b2-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":16334,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 126 x 88, 8-bit/color RGBA, non-interlaced","md5":"12026204fd51a2f30b900c805c3ad0ea","sha1":"26ab28adc010c55f84ce5ba2987d60056d5f4c27","sha256":"65c1cb5071f0c761928cd14f5e0aebaace90c854f3e07e7724be1bdde5c033b4","sha512":"f5b3863743e3798cc97c5c04c75e56c4893f86115b65d6819b6e95d5e658f19791a0c6e8b10196a17d38f61976660558c26e17aeeac1b72a46eea8d7f1444a60","ssdeep":"384:c9n6C1FidkNl9G5i+UeFJvftAhm/NG9SzC99DlI:c9nYWv+xf+hm/Nd89i","tlshash":"5072d04b9345cbf8d2c9c2682a7e1d163352dbc51e8992449bb034eca7b104f598eab3","first_seen":"2023-05-06T18:37:16Z","last_seen":"2026-06-11T20:24:30.134903Z","times_seen":248,"resource_available":false,"data":null}},"time_used":559,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":403,"receive":156,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"pc.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-16","alert":"Sinkholed","trigger":"pc.drwinxglobaloos.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}